Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
supportassist vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-34388
Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain information disclosure vulnerability. A local malicious user with low privileges could exploit this vulnerability to view and modify sensitive informat...
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs
NA
CVE-2022-34389
Dell SupportAssist contains a rate limit bypass issues in screenmeet API third party component. An unauthenticated attacker could potentially exploit this vulnerability and impersonate a legitimate dell customer to a dell support technician.
Dell Supportassist For Home Pcs
Dell Supportassist For Business Pcs
6.8
CVSSv2
CVE-2019-3718
Dell SupportAssist Client versions before 3.2.0.90 contain an improper origin validation vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to attempt CSRF attacks on users of the impacted systems.
Dell Supportassist
1 Article
7.9
CVSSv2
CVE-2019-3719
Dell SupportAssist Client versions before 3.2.0.90 contain a remote code execution vulnerability. An unauthenticated attacker, sharing the network access layer with the vulnerable system, can compromise the vulnerable system by tricking a victim user into downloading and executin...
Dell Supportassist
3 Github repositories
1 Article
6.8
CVSSv2
CVE-2019-12280
PC-Doctor Toolbox prior to 7.3 has an Uncontrolled Search Path Element.
Pc-doctor Toolbox
Dell Supportassist For Home Pcs 3.2.2
Dell Supportassist For Business Pcs 2.0.1
2 Articles
3.6
CVSSv2
CVE-2021-36286
Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions before 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. Symbolic links can be created by any(non-privileged) user under...
Dell Supportassist Client Consumer
NA
CVE-2022-34384
Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restor...
Dell Command Update
Dell Update
Dell Alienware Update
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs
4.4
CVSSv2
CVE-2021-36297
SupportAssist Client version 3.8 and 3.9 contains an Untrusted search path vulnerability that allows malicious users to load an arbitrary .dll file via .dll planting/hijacking, only by a separate administrative action that is not a default part of the SOSInstallerTool.exe install...
Dell Supportassist For Home Pcs
NA
CVE-2022-34366
Dell SupportAssist for Home PCs (version 3.11.2 and prior) contain Overly Permissive Cross-domain Whitelist vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information.
Dell Supportassist For Home Pcs
7.2
CVSSv2
CVE-2022-26865
Dell Support Assist OS Recovery versions prior to 5.5.2 contain an Authentication Bypass vulnerability. An unauthenticated attacker with physical access to the system may exploit this vulnerability by bypassing OS Recovery authentication in order to run arbitrary code on the syst...
Dell Supportassist Os Recovery 5.5.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »