Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
supportassist vulnerabilities and exploits
(subscribe to this query)
9.6
CVSSv3
CVE-2022-29095
Dell SupportAssist Client Consumer versions (3.10.4 and prior) and Dell SupportAssist Client Commercial versions (3.1.1 and prior) contain a cross-site scripting vulnerability. A remote unauthenticated malicious user could potentially exploit this vulnerability under specific con...
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs
7.1
CVSSv3
CVE-2022-29093
Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion vulnerability. Authenticated non-admin user could exploit the issue and delete arbitrary files o...
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs
8.8
CVSSv3
CVE-2019-3718
Dell SupportAssist Client versions before 3.2.0.90 contain an improper origin validation vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to attempt CSRF attacks on users of the impacted systems.
Dell Supportassist
1 Article
8
CVSSv3
CVE-2019-3719
Dell SupportAssist Client versions before 3.2.0.90 contain a remote code execution vulnerability. An unauthenticated attacker, sharing the network access layer with the vulnerable system, can compromise the vulnerable system by tricking a victim user into downloading and executin...
Dell Supportassist
3 Github repositories
1 Article
7.8
CVSSv3
CVE-2019-12280
PC-Doctor Toolbox prior to 7.3 has an Uncontrolled Search Path Element.
Pc-doctor Toolbox
Dell Supportassist For Home Pcs 3.2.2
Dell Supportassist For Business Pcs 2.0.1
2 Articles
7.1
CVSSv3
CVE-2021-36286
Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions before 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. Symbolic links can be created by any(non-privileged) user under...
Dell Supportassist Client Consumer
7.8
CVSSv3
CVE-2022-34384
Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restor...
Dell Command Update
Dell Update
Dell Alienware Update
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs
6.8
CVSSv3
CVE-2022-26865
Dell Support Assist OS Recovery versions prior to 5.5.2 contain an Authentication Bypass vulnerability. An unauthenticated attacker with physical access to the system may exploit this vulnerability by bypassing OS Recovery authentication in order to run arbitrary code on the syst...
Dell Supportassist Os Recovery 5.5.1
7.8
CVSSv3
CVE-2021-36297
SupportAssist Client version 3.8 and 3.9 contains an Untrusted search path vulnerability that allows malicious users to load an arbitrary .dll file via .dll planting/hijacking, only by a separate administrative action that is not a default part of the SOSInstallerTool.exe install...
Dell Supportassist For Home Pcs
6.5
CVSSv3
CVE-2022-34366
Dell SupportAssist for Home PCs (version 3.11.2 and prior) contain Overly Permissive Cross-domain Whitelist vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information.
Dell Supportassist For Home Pcs
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »