CVE-2020-5361 | Armis Vulnerability Intelligence Database

Description Preview

Dell Client Commercial and Consumer platforms contain a vulnerability in their BIOS password reset capability. Unauthorized password generation tools can be used by physically present attackers to reset BIOS passwords and BIOS-managed Hard Disk Drive (HDD) passwords, allowing them to bypass security restrictions for BIOS Setup configuration, HDD access, and BIOS pre-boot authentication.

Overview

This vulnerability (CVE-2020-5361) affects select Dell Client Commercial and Consumer platforms that support a BIOS password reset capability designed to help authorized customers who forget their passwords. Unauthorized password generation tools not approved by Dell can generate BIOS recovery passwords. An attacker with physical access to the system could use these tools to bypass security measures including BIOS Setup configuration controls, HDD access restrictions, and BIOS pre-boot authentication. This vulnerability is classified as CWE-640 (Weak Password Recovery Mechanism for Forgotten Password).

Remediation

Dell has released BIOS updates to address this vulnerability. System administrators and users should:

Identify affected Dell systems in their environment
Download and install the latest BIOS updates from Dell's support site
Implement physical security measures to prevent unauthorized access to devices
Consider using additional security measures such as disk encryption that does not rely solely on BIOS-level protection
Monitor systems for unauthorized access or configuration changes

References

Dell Security Advisory (DSA-2020-119): https://www.dell.com/support/kbdoc/en-us/000180741/dsa-2020-119-dell-client-products-unauthorized-bios-password-reset-tool-vulnerability
CWE-640: https://cwe.mitre.org/data/definitions/640.html

Industry ExposureMost to least
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.

Accommodation & Food Services: Low
Accommodation & Food Services
Administrative, Support, Waste Management & Remediation Services: Low
Administrative, Support, Waste Management & Remediation Services
Agriculture, Forestry Fishing & Hunting: Low
Agriculture, Forestry Fishing & Hunting
Arts, Entertainment & Recreation: Low
Arts, Entertainment & Recreation
Construction: Low
Construction
Educational Services: Low
Educational Services
Finance and Insurance: Low
Finance and Insurance
Health Care & Social Assistance: Low
Health Care & Social Assistance
Information: Low
Information
Management of Companies & Enterprises: Low
Management of Companies & Enterprises
Manufacturing: Low
Manufacturing
Mining: Low
Mining
Other Services (except Public Administration): Low
Other Services (except Public Administration)
Professional, Scientific, & Technical Services: Low
Professional, Scientific, & Technical Services
Public Administration: Low
Public Administration
Real Estate Rental & Leasing: Low
Real Estate Rental & Leasing
Retail Trade: Low
Retail Trade
Transportation & Warehousing: Low
Transportation & Warehousing
Utilities: Low
Utilities
Wholesale Trade: Low
Wholesale Trade

^{CVE-2020-5361:}Dell Client Products BIOS Password Reset Vulnerability

Description Preview

Overview

Remediation

References

Focus on What Matters

Let's talk!