Details of VAR-201908-0397

ID

VAR-201908-0397

CVE

CVE-2019-3717

TITLE

Select Dell Client Commercial and Consumer Platform access control vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-007550

DESCRIPTION

Select Dell Client Commercial and Consumer platforms contain an Improper Access Vulnerability. An unauthenticated attacker with physical access to the system could potentially bypass intended Secure Boot restrictions to run unsigned and untrusted code on expansion cards installed in the system during platform boot. Refer to https://www.dell.com/support/article/us/en/04/sln317683/dsa-2019-043-dell-client-improper-access-control-vulnerability?lang=en for versions affected by this vulnerability. Dell G3 3579 and other products are Dell products of the United States. The Dell G3 3579 is a laptop. ChengMing 3977 is a desktop computer. Embedded Box PC 5000 is an embedded box computer

Trust: 2.25

sources: NVD: CVE-2019-3717 // JVNDB: JVNDB-2019-007550 // CNVD: CNVD-2020-15720 // VULHUB: VHN-155152

IOT TAXONOMY

category:

['IoT']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2020-15720

AFFECTED PRODUCTS

vendor:	dell	model:	inspiron 5580	scope:	lt	version:	2.2.0	Trust: 1.0
vendor:	dell	model:	latitude 3379	scope:	lt	version:	1.0.25	Trust: 1.0
vendor:	dell	model:	chengming 3977	scope:	lt	version:	1.6.0	Trust: 1.0
vendor:	dell	model:	inspiron 7573	scope:	lt	version:	1.13.1	Trust: 1.0
vendor:	dell	model:	latitude 7424 rugged extreme	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	dell	model:	g5 5587	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	latitude e5470	scope:	lt	version:	1.20.4	Trust: 1.0
vendor:	dell	model:	inspiron 7577	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	venue 7140	scope:	lt	version:	a18	Trust: 1.0
vendor:	dell	model:	inspiron 7368	scope:	lt	version:	1.19.0	Trust: 1.0
vendor:	dell	model:	inspiron 7786	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	dell	model:	vostro 7570	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	inspiron 3268	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	optiplex 7460 aio	scope:	lt	version:	1.6.4	Trust: 1.0
vendor:	dell	model:	g7 7790	scope:	lt	version:	1.3.1	Trust: 1.0
vendor:	dell	model:	latitude 7202	scope:	lt	version:	a23	Trust: 1.0
vendor:	dell	model:	latitude e7470	scope:	lt	version:	1.21.6	Trust: 1.0
vendor:	dell	model:	inspiron 7467	scope:	lt	version:	1.9.0	Trust: 1.0
vendor:	dell	model:	inspiron 3580	scope:	lt	version:	1.4.1	Trust: 1.0
vendor:	dell	model:	precision 3620	scope:	lt	version:	2.12.0	Trust: 1.0
vendor:	dell	model:	inspiron 7778	scope:	lt	version:	1.19.0	Trust: 1.0
vendor:	dell	model:	latitude 5288	scope:	lt	version:	1.14.2	Trust: 1.0
vendor:	dell	model:	inspiron 7779	scope:	lt	version:	1.27.0	Trust: 1.0
vendor:	dell	model:	xps 9343	scope:	lt	version:	a19	Trust: 1.0
vendor:	dell	model:	optiplex 3050	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	inspiron 5481	scope:	lt	version:	2.2.0	Trust: 1.0
vendor:	dell	model:	precision 3930	scope:	lt	version:	1.1.9	Trust: 1.0
vendor:	dell	model:	inspiron 5379	scope:	lt	version:	1.11.0	Trust: 1.0
vendor:	dell	model:	vostro 3459	scope:	lt	version:	1.6.0	Trust: 1.0
vendor:	dell	model:	inspiron 3480	scope:	lt	version:	1.4.1	Trust: 1.0
vendor:	dell	model:	latitude 5490	scope:	lt	version:	1.8.3	Trust: 1.0
vendor:	dell	model:	latitude e7270	scope:	lt	version:	1.21.6	Trust: 1.0
vendor:	dell	model:	precision 3420	scope:	lt	version:	2.12.0	Trust: 1.0
vendor:	dell	model:	inspiron 3584	scope:	lt	version:	1.2.0	Trust: 1.0
vendor:	dell	model:	precision 3430	scope:	lt	version:	1.3.4	Trust: 1.0
vendor:	dell	model:	inspiron 5770	scope:	lt	version:	1.2.1	Trust: 1.0
vendor:	dell	model:	inspiron 7569	scope:	lt	version:	1.19.0	Trust: 1.0
vendor:	dell	model:	optiplex 3040	scope:	lt	version:	1.10.1	Trust: 1.0
vendor:	dell	model:	latitude 7285	scope:	lt	version:	1.3.1	Trust: 1.0
vendor:	dell	model:	g5 5590	scope:	lt	version:	1.3.1	Trust: 1.0
vendor:	dell	model:	inspiron 5558	scope:	lt	version:	a17	Trust: 1.0
vendor:	dell	model:	inspiron 5468	scope:	lt	version:	1.9.1	Trust: 1.0
vendor:	dell	model:	inspiron 3668	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	latitude 5280	scope:	lt	version:	1.14.2	Trust: 1.0
vendor:	dell	model:	wyse 7040	scope:	lt	version:	1.5.9	Trust: 1.0
vendor:	dell	model:	g7 7590	scope:	lt	version:	1.3.1	Trust: 1.0
vendor:	dell	model:	precision 5520	scope:	lt	version:	1.14.2	Trust: 1.0
vendor:	dell	model:	inspiron 3158	scope:	lt	version:	1.22.0	Trust: 1.0
vendor:	dell	model:	latitude 3460	scope:	lt	version:	a15	Trust: 1.0
vendor:	dell	model:	vostro 3268	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	latitude 3390	scope:	lt	version:	1.8.4	Trust: 1.0
vendor:	dell	model:	inspiron 7580	scope:	eq	version:	-	Trust: 1.0
vendor:	dell	model:	latitude 5290 2-in-1	scope:	lt	version:	1.7.3	Trust: 1.0
vendor:	dell	model:	latitude 7480	scope:	lt	version:	1.14.1	Trust: 1.0
vendor:	dell	model:	wyse 5070	scope:	lt	version:	1.1.4	Trust: 1.0
vendor:	dell	model:	latitude e5250	scope:	lt	version:	a21	Trust: 1.0
vendor:	dell	model:	vostro 5481	scope:	lt	version:	2.2.0	Trust: 1.0
vendor:	dell	model:	inspiron 5557	scope:	lt	version:	1.6.0	Trust: 1.0
vendor:	dell	model:	inspiron 3567	scope:	lt	version:	2.9.0	Trust: 1.0
vendor:	dell	model:	inspiron 7566	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	dell	model:	inspiron 3581	scope:	lt	version:	1.2.0	Trust: 1.0
vendor:	dell	model:	vostro 7580	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	inspiron 7570	scope:	lt	version:	1.13.1	Trust: 1.0
vendor:	dell	model:	inspiron 5570	scope:	lt	version:	1.2.1	Trust: 1.0
vendor:	dell	model:	latitude 5285	scope:	lt	version:	1.5.2	Trust: 1.0
vendor:	dell	model:	vostro 3583	scope:	lt	version:	1.4.1	Trust: 1.0
vendor:	dell	model:	vostro 5468	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	inspiron 5758	scope:	lt	version:	a17	Trust: 1.0
vendor:	dell	model:	vostro 3668	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	latitude e5570	scope:	lt	version:	1.20.4	Trust: 1.0
vendor:	dell	model:	inspiron 3468	scope:	lt	version:	1.12.0	Trust: 1.0
vendor:	dell	model:	inspiron 7386	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	dell	model:	optiplex 7060	scope:	lt	version:	1.3.4	Trust: 1.0
vendor:	dell	model:	inspiron 5559	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	vostro 3267	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	inspiron 3781	scope:	lt	version:	1.2.0	Trust: 1.0
vendor:	dell	model:	vostro 5568	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	xps 9570	scope:	lt	version:	1.9.1	Trust: 1.0
vendor:	dell	model:	optiplex 7050	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	xps 9550	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	xps 8900	scope:	lt	version:	2.5.0	Trust: 1.0
vendor:	dell	model:	inspiron 3583	scope:	lt	version:	1.4.1	Trust: 1.0
vendor:	dell	model:	vostro 3458	scope:	lt	version:	a15	Trust: 1.0
vendor:	dell	model:	precision 7710	scope:	lt	version:	1.17.7	Trust: 1.0
vendor:	dell	model:	inspiron 7460	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	latitude 5450	scope:	lt	version:	a21	Trust: 1.0
vendor:	dell	model:	inspiron 7370	scope:	lt	version:	1.13.1	Trust: 1.0
vendor:	dell	model:	vostro 3478	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	inspiron 7359	scope:	lt	version:	1.22.0	Trust: 1.0
vendor:	dell	model:	latitude 5250	scope:	lt	version:	a21	Trust: 1.0
vendor:	dell	model:	g7 7588	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	latitude 5175	scope:	lt	version:	1.5.1	Trust: 1.0
vendor:	dell	model:	inspiron 7373	scope:	lt	version:	1.13.1	Trust: 1.0
vendor:	dell	model:	latitude 3180	scope:	lt	version:	1.7.2	Trust: 1.0
vendor:	dell	model:	xps 9350	scope:	lt	version:	1.10.1	Trust: 1.0
vendor:	dell	model:	latitude 7250	scope:	lt	version:	a21	Trust: 1.0
vendor:	dell	model:	latitude 7390 2-in-1	scope:	lt	version:	1.8.3	Trust: 1.0
vendor:	dell	model:	inspiron 5480	scope:	lt	version:	2.2.0	Trust: 1.0
vendor:	dell	model:	precision 5820	scope:	lt	version:	1.10.4	Trust: 1.0
vendor:	dell	model:	vostro 5581	scope:	lt	version:	2.2.0	Trust: 1.0
vendor:	dell	model:	latitude 5290	scope:	lt	version:	1.8.3	Trust: 1.0
vendor:	dell	model:	inspiron 3153	scope:	lt	version:	1.22.0	Trust: 1.0
vendor:	dell	model:	optiplex xe3	scope:	lt	version:	1.3.4	Trust: 1.0
vendor:	dell	model:	latitude 7370	scope:	lt	version:	1.17.4	Trust: 1.0
vendor:	dell	model:	optiplex 7040	scope:	lt	version:	1.14.0	Trust: 1.0
vendor:	dell	model:	inspiron 5579	scope:	lt	version:	1.11.0	Trust: 1.0
vendor:	dell	model:	latitude 3190	scope:	lt	version:	1.6.1	Trust: 1.0
vendor:	dell	model:	inspiron 3481	scope:	lt	version:	1.2.0	Trust: 1.0
vendor:	dell	model:	latitude 7490	scope:	lt	version:	1.9.3	Trust: 1.0
vendor:	dell	model:	embedded box pc 5000	scope:	lt	version:	1.5.6	Trust: 1.0
vendor:	dell	model:	inspiron 5568	scope:	lt	version:	1.19.0	Trust: 1.0
vendor:	dell	model:	inspiron 5566	scope:	lt	version:	1.9.1	Trust: 1.0
vendor:	dell	model:	inspiron 3780	scope:	lt	version:	1.4.1	Trust: 1.0
vendor:	dell	model:	latitude 7290	scope:	lt	version:	1.9.3	Trust: 1.0
vendor:	dell	model:	latitude 3380	scope:	lt	version:	1.9.0	Trust: 1.0
vendor:	dell	model:	latitude e5450	scope:	lt	version:	a21	Trust: 1.0
vendor:	dell	model:	latitude 5420	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	dell	model:	precision 3520	scope:	lt	version:	1.14.2	Trust: 1.0
vendor:	dell	model:	vostro 3568	scope:	lt	version:	3.3.0	Trust: 1.0
vendor:	dell	model:	optiplex 7450 aio	scope:	lt	version:	1.12.1	Trust: 1.0
vendor:	dell	model:	inspiron 3459	scope:	lt	version:	1.9.0	Trust: 1.0
vendor:	dell	model:	latitude e5270	scope:	lt	version:	1.20.4	Trust: 1.0
vendor:	dell	model:	inspiron 5582	scope:	lt	version:	2.2.0	Trust: 1.0
vendor:	dell	model:	vostro 3584	scope:	lt	version:	1.2.0	Trust: 1.0
vendor:	dell	model:	latitude 5488	scope:	lt	version:	1.14.2	Trust: 1.0
vendor:	dell	model:	precision 5510	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	inspiron 3476	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	precision 5720 aio	scope:	lt	version:	2.4.2	Trust: 1.0
vendor:	dell	model:	precision t7910	scope:	lt	version:	a30	Trust: 1.0
vendor:	dell	model:	vostro 3480	scope:	lt	version:	1.4.1	Trust: 1.0
vendor:	dell	model:	inspiron 3558	scope:	lt	version:	a18	Trust: 1.0
vendor:	dell	model:	vostro 3667	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	inspiron 5767	scope:	lt	version:	1.2.7	Trust: 1.0
vendor:	dell	model:	latitude 3150	scope:	lt	version:	a10	Trust: 1.0
vendor:	dell	model:	inspiron 3458	scope:	lt	version:	a18	Trust: 1.0
vendor:	dell	model:	precision 3630	scope:	lt	version:	1.1.10	Trust: 1.0
vendor:	dell	model:	g3 3579	scope:	lt	version:	1.9.0	Trust: 1.0
vendor:	dell	model:	optiplex 3050 aio	scope:	lt	version:	1.12.1	Trust: 1.0
vendor:	dell	model:	inspiron 3467	scope:	lt	version:	2.9.0	Trust: 1.0
vendor:	dell	model:	vostro 3070	scope:	lt	version:	1.5.21	Trust: 1.0
vendor:	dell	model:	inspiron 670	scope:	lt	version:	1.5.21	Trust: 1.0
vendor:	dell	model:	latitude 7380	scope:	lt	version:	1.14.1	Trust: 1.0
vendor:	dell	model:	latitude 3580	scope:	lt	version:	1.11.0	Trust: 1.0
vendor:	dell	model:	latitude 7214	scope:	eq	version:	-	Trust: 1.0
vendor:	dell	model:	vostro 3580	scope:	lt	version:	1.4.1	Trust: 1.0
vendor:	dell	model:	inspiron 7572	scope:	lt	version:	1.1.9	Trust: 1.0
vendor:	dell	model:	latitude e7250	scope:	lt	version:	a21	Trust: 1.0
vendor:	dell	model:	inspiron 3470	scope:	lt	version:	1.5.21	Trust: 1.0
vendor:	dell	model:	inspiron 7472	scope:	lt	version:	1.1.9	Trust: 1.0
vendor:	dell	model:	vostro 3670	scope:	lt	version:	1.5.21	Trust: 1.0
vendor:	dell	model:	inspiron 5482	scope:	lt	version:	2.2.0	Trust: 1.0
vendor:	dell	model:	xps 9250	scope:	lt	version:	1.5.1	Trust: 1.0
vendor:	dell	model:	latitude 5580	scope:	lt	version:	1.14.2	Trust: 1.0
vendor:	dell	model:	chengming 3967	scope:	lt	version:	1.5.0	Trust: 1.0
vendor:	dell	model:	inspiron 5567	scope:	lt	version:	1.2.7	Trust: 1.0
vendor:	dell	model:	vostro 3669	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	precision 7920	scope:	lt	version:	1.10.3	Trust: 1.0
vendor:	dell	model:	inspiron 5457	scope:	lt	version:	1.6.0	Trust: 1.0
vendor:	dell	model:	optiplex 3046	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	optiplex 5060	scope:	lt	version:	1.3.4	Trust: 1.0
vendor:	dell	model:	precision t5810	scope:	lt	version:	a30	Trust: 1.0
vendor:	dell	model:	vostro 5370	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	optiplex 7760 aio	scope:	lt	version:	1.6.4	Trust: 1.0
vendor:	dell	model:	latitude 5491	scope:	lt	version:	1.7.4	Trust: 1.0
vendor:	dell	model:	inspiron 7353	scope:	lt	version:	1.22.0	Trust: 1.0
vendor:	dell	model:	chengming 3980	scope:	lt	version:	1.5.21	Trust: 1.0
vendor:	dell	model:	latitude e7450	scope:	lt	version:	a21	Trust: 1.0
vendor:	dell	model:	latitude e5550	scope:	lt	version:	a21	Trust: 1.0
vendor:	dell	model:	precision 7720	scope:	lt	version:	1.14.1	Trust: 1.0
vendor:	dell	model:	latitude 3570	scope:	lt	version:	1.14.1	Trust: 1.0
vendor:	dell	model:	latitude 3550	scope:	lt	version:	a19	Trust: 1.0
vendor:	dell	model:	inspiron 3568	scope:	lt	version:	1.12.0	Trust: 1.0
vendor:	dell	model:	inspiron 3559	scope:	lt	version:	1.9.0	Trust: 1.0
vendor:	dell	model:	inspiron 5368	scope:	lt	version:	1.19.0	Trust: 1.0
vendor:	dell	model:	latitude 3490	scope:	lt	version:	1.9.7	Trust: 1.0
vendor:	dell	model:	latitude 5590	scope:	lt	version:	1.8.3	Trust: 1.0
vendor:	dell	model:	latitude 7389	scope:	lt	version:	1.17.1	Trust: 1.0
vendor:	dell	model:	optiplex 5260 aio	scope:	lt	version:	1.6.4	Trust: 1.0
vendor:	dell	model:	precision 5530 2-in-1	scope:	lt	version:	1.4.8	Trust: 1.0
vendor:	dell	model:	precision 7510	scope:	lt	version:	1.17.7	Trust: 1.0
vendor:	dell	model:	vostro 5471	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	optiplex 3240 aio	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	xps 7760	scope:	lt	version:	2.4.2	Trust: 1.0
vendor:	dell	model:	inspiron 7560	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	latitude 5179	scope:	lt	version:	1.5.1	Trust: 1.0
vendor:	dell	model:	vostro 3468	scope:	lt	version:	3.3.0	Trust: 1.0
vendor:	dell	model:	latitude 3160	scope:	lt	version:	a12	Trust: 1.0
vendor:	dell	model:	precision 3510	scope:	lt	version:	1.20.4	Trust: 1.0
vendor:	dell	model:	latitude 3480	scope:	lt	version:	1.11.0	Trust: 1.0
vendor:	dell	model:	g3 3779	scope:	lt	version:	1.9.0	Trust: 1.0
vendor:	dell	model:	inspiron 7567	scope:	lt	version:	1.9.0	Trust: 1.0
vendor:	dell	model:	latitude 3189	scope:	lt	version:	1.7.2	Trust: 1.0
vendor:	dell	model:	optiplex 5040	scope:	lt	version:	1.13.0	Trust: 1.0
vendor:	dell	model:	latitude 7390	scope:	lt	version:	1.9.3	Trust: 1.0
vendor:	dell	model:	xps 9360	scope:	lt	version:	2.11.0	Trust: 1.0
vendor:	dell	model:	xps 9370	scope:	lt	version:	1.9.0	Trust: 1.0
vendor:	dell	model:	precision 7520	scope:	lt	version:	1.14.1	Trust: 1.0
vendor:	dell	model:	inspiron 5370	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	optiplex 5250 aio	scope:	lt	version:	1.12.1	Trust: 1.0
vendor:	dell	model:	xps 9560	scope:	lt	version:	1.14.2	Trust: 1.0
vendor:	dell	model:	precision 5530	scope:	lt	version:	1.10.1	Trust: 1.0
vendor:	dell	model:	inspiron 5458	scope:	lt	version:	a17	Trust: 1.0
vendor:	dell	model:	vostro 3660	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	inspiron 7568	scope:	lt	version:	1.22.0	Trust: 1.0
vendor:	dell	model:	precision 3530	scope:	lt	version:	1.7.4	Trust: 1.0
vendor:	dell	model:	inspiron 5578	scope:	lt	version:	1.27.0	Trust: 1.0
vendor:	dell	model:	latitude 5591	scope:	lt	version:	1.7.4	Trust: 1.0
vendor:	dell	model:	latitude 5550	scope:	lt	version:	a21	Trust: 1.0
vendor:	dell	model:	optiplex 7440 aio	scope:	lt	version:	1.10.0	Trust: 1.0
vendor:	dell	model:	precision 7530	scope:	lt	version:	1.8.2	Trust: 1.0
vendor:	dell	model:	latitude 3590	scope:	lt	version:	1.9.7	Trust: 1.0
vendor:	dell	model:	latitude 3450	scope:	lt	version:	a19	Trust: 1.0
vendor:	dell	model:	vostro 3581	scope:	lt	version:	1.2.0	Trust: 1.0
vendor:	dell	model:	inspiron 7586	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	dell	model:	latitude 5480	scope:	lt	version:	1.14.2	Trust: 1.0
vendor:	dell	model:	latitude 7414	scope:	lt	version:	1.23.0	Trust: 1.0
vendor:	dell	model:	precision 7820	scope:	lt	version:	1.10.3	Trust: 1.0
vendor:	dell	model:	optiplex 5050	scope:	lt	version:	1.11.1	Trust: 1.0
vendor:	dell	model:	latitude 7275	scope:	lt	version:	1.5.1	Trust: 1.0
vendor:	dell	model:	latitude 7280	scope:	lt	version:	1.14.1	Trust: 1.0
vendor:	dell	model:	inspiron 7378	scope:	lt	version:	1.27.0	Trust: 1.0
vendor:	dell	model:	latitude 5289	scope:	lt	version:	1.17.1	Trust: 1.0
vendor:	dell	model:	precision t7810	scope:	lt	version:	a30	Trust: 1.0
vendor:	dell	model:	inspiron 3576	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	inspiron 7380	scope:	lt	version:	1.6.0	Trust: 1.0
vendor:	dell	model:	inspiron 7466	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	dell	model:	vostro 3470	scope:	lt	version:	1.5.21	Trust: 1.0
vendor:	dell	model:	xps 9575	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	dell	model:	inspiron 7773	scope:	lt	version:	1.11.0	Trust: 1.0
vendor:	dell	model:	latitude 3470	scope:	lt	version:	1.14.1	Trust: 1.0
vendor:	dell	model:	latitude 3560	scope:	lt	version:	a15	Trust: 1.0
vendor:	dell	model:	latitude 5414	scope:	lt	version:	1.23.0	Trust: 1.0
vendor:	dell	model:	inspiron 5759	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	inspiron 5378	scope:	lt	version:	1.27.0	Trust: 1.0
vendor:	dell	model:	inspiron 7579	scope:	lt	version:	1.27.0	Trust: 1.0
vendor:	dell	model:	latitude 7212	scope:	lt	version:	1.25.0	Trust: 1.0
vendor:	dell	model:	latitude 7350	scope:	lt	version:	a18	Trust: 1.0
vendor:	dell	model:	xps 9380	scope:	lt	version:	1.3.2	Trust: 1.0
vendor:	dell	model:	latitude 3350	scope:	lt	version:	a15	Trust: 1.0
vendor:	dell	model:	optiplex 3060	scope:	lt	version:	1.3.4	Trust: 1.0
vendor:	dell	model:	inspiron 5459	scope:	lt	version:	1.7.0	Trust: 1.0
vendor:	dell	model:	chengming 3967	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	chengming 3977	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	chengming 3980	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	g3 3579	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	g3 3779	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	g5 5587	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	g5 5590	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	g7 7588	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	g7 7590	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	g7 7790	scope:	-	version:	-	Trust: 0.8
vendor:	dell	model:	g3	scope:	eq	version:	3579	Trust: 0.6
vendor:	dell	model:	embedded box pc embedded box pc	scope:	eq	version:	50005000	Trust: 0.6
vendor:	dell	model:	chengming	scope:	eq	version:	3977	Trust: 0.6
vendor:	dell	model:	g7	scope:	eq	version:	7590	Trust: 0.6
vendor:	dell	model:	g7	scope:	eq	version:	7790	Trust: 0.6
vendor:	dell	model:	embedded box pc	scope:	eq	version:	5000	Trust: 0.6
vendor:	dell	model:	g3	scope:	eq	version:	3779	Trust: 0.6
vendor:	dell	model:	g5	scope:	eq	version:	5587	Trust: 0.6
vendor:	dell	model:	g5	scope:	eq	version:	5590	Trust: 0.6
vendor:	dell	model:	g7	scope:	eq	version:	7588	Trust: 0.6

sources: CNVD: CNVD-2020-15720 // JVNDB: JVNDB-2019-007550 // NVD: CVE-2019-3717

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-3717
value:	MEDIUM
Trust: 1.0
security_alert@emc.com:	CVE-2019-3717
value:	HIGH
Trust: 1.0
NVD:	CVE-2019-3717
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2020-15720
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201908-345
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-155152
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2019-3717
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2020-15720
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-155152
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2019-3717
baseSeverity:	MEDIUM
baseScore:	6.8
vectorString:	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	PHYSICAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	0.9
impactScore:	5.9
version:	3.1
Trust: 1.0
security_alert@emc.com:	CVE-2019-3717
baseSeverity:	HIGH
baseScore:	7.1
vectorString:	CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:H
attackVector:	PHYSICAL
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	HIGH
integrityImpact:	LOW
availabilityImpact:	HIGH
exploitabilityScore:	0.5
impactScore:	6.0
version:	3.0
Trust: 1.0
NVD:	CVE-2019-3717
baseSeverity:	MEDIUM
baseScore:	6.8
vectorString:	CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	PHYSICAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2020-15720 // VULHUB: VHN-155152 // JVNDB: JVNDB-2019-007550 // CNNVD: CNNVD-201908-345 // NVD: CVE-2019-3717 // NVD: CVE-2019-3717

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	CWE-284	Trust: 0.9

sources: VULHUB: VHN-155152 // JVNDB: JVNDB-2019-007550 // NVD: CVE-2019-3717

TYPE

access control error

Trust: 0.6

sources: CNNVD: CNNVD-201908-345

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-007550

PATCH

title:	DSA-2019-043	url:	https://www.dell.com/support/article/us/en/04/sln317683/dsa-2019-043-dell-client-improper-access-control-vulnerability?lang=en	Trust: 0.8
title:	Patch for Multiple Dell Product Access Control Error Vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/207367	Trust: 0.6
title:	Multiple Dell Product access control error vulnerability fixes	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=96102	Trust: 0.6

sources: CNVD: CNVD-2020-15720 // JVNDB: JVNDB-2019-007550 // CNNVD: CNNVD-201908-345

EXTERNAL IDS

db:	NVD	id:	CVE-2019-3717	Trust: 3.1
db:	JVNDB	id:	JVNDB-2019-007550	Trust: 0.8
db:	CNVD	id:	CNVD-2020-15720	Trust: 0.7
db:	CNNVD	id:	CNNVD-201908-345	Trust: 0.7
db:	VULHUB	id:	VHN-155152	Trust: 0.1

sources: CNVD: CNVD-2020-15720 // VULHUB: VHN-155152 // JVNDB: JVNDB-2019-007550 // CNNVD: CNNVD-201908-345 // NVD: CVE-2019-3717

REFERENCES

url:	https://www.dell.com/support/article/us/en/04/sln317683/dsa-2019-043-dell-client-improper-access-control-vulnerability?lang=en	Trust: 2.3
url:	https://nvd.nist.gov/vuln/detail/cve-2019-3717	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-3717	Trust: 0.8

sources: CNVD: CNVD-2020-15720 // VULHUB: VHN-155152 // JVNDB: JVNDB-2019-007550 // CNNVD: CNNVD-201908-345 // NVD: CVE-2019-3717

SOURCES

db:	CNVD	id:	CNVD-2020-15720
db:	VULHUB	id:	VHN-155152
db:	JVNDB	id:	JVNDB-2019-007550
db:	CNNVD	id:	CNNVD-201908-345
db:	NVD	id:	CVE-2019-3717

LAST UPDATE DATE

2024-11-23T22:37:45.022000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2020-15720	date:	2020-03-06T00:00:00
db:	VULHUB	id:	VHN-155152	date:	2023-02-10T00:00:00
db:	JVNDB	id:	JVNDB-2019-007550	date:	2019-08-14T00:00:00
db:	CNNVD	id:	CNNVD-201908-345	date:	2020-08-25T00:00:00
db:	NVD	id:	CVE-2019-3717	date:	2024-11-21T04:42:23.433

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2020-15720	date:	2020-03-06T00:00:00
db:	VULHUB	id:	VHN-155152	date:	2019-08-05T00:00:00
db:	JVNDB	id:	JVNDB-2019-007550	date:	2019-08-14T00:00:00
db:	CNNVD	id:	CNNVD-201908-345	date:	2019-08-05T00:00:00
db:	NVD	id:	CVE-2019-3717	date:	2019-08-05T17:15:10.883