MEDIUM✓ PATCH🇵🇱 Wersja polska

CVE-2020-26186

CVSS 6.8v3.1pub. 2021-01-08upd. 2024-11-21

Dell Inspiron 5675 BIOS versions prior to 1.4.1 contain a UEFI BIOS RuntimeServices overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwriting the RuntimeServices structure to execute arbitrary code in System Management Mode (SMM).

CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dell Inspiron 5675

    HW
    Dell
    wszystkie wersje
  • Dell Inspiron 5675 Firmware

    OS
    Dell
    < 1.4.1
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2022-24417HIGH7.5ten sam produkt

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potent...

CVE-2022-24418HIGH7.5ten sam produkt

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potent...

CVE-2026-22769CRITICAL10.0⚠ KEVPL ✓ten sam vendor

Dell RecoverPoint for VMs — zahardkodowane dane uwierzytelniające (RCE, root)

CVE-2026-41120CRITICAL9.8PL ✓ten sam vendor

RCE w Dell Wyse Management Suite — akceptacja niezaufanych danych

CVE-2026-40636CRITICAL9.8PL ✓ten sam vendor

Dell ECS / ObjectScale — podatność hard-coded credentials umożliwiająca dostęp do systemu plików