Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
supportassist vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2022-29094
Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion/overwrite vulnerability. Authenticated non-admin user could exploit the issue and delete or over...
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs
7.6
CVSSv2
CVE-2022-29095
Dell SupportAssist Client Consumer versions (3.10.4 and prior) and Dell SupportAssist Client Commercial versions (3.1.1 and prior) contain a cross-site scripting vulnerability. A remote unauthenticated malicious user could potentially exploit this vulnerability under specific con...
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs
6.8
CVSSv2
CVE-2019-3718
Dell SupportAssist Client versions before 3.2.0.90 contain an improper origin validation vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to attempt CSRF attacks on users of the impacted systems.
Dell Supportassist
1 Article
7.9
CVSSv2
CVE-2019-3719
Dell SupportAssist Client versions before 3.2.0.90 contain a remote code execution vulnerability. An unauthenticated attacker, sharing the network access layer with the vulnerable system, can compromise the vulnerable system by tricking a victim user into downloading and executin...
Dell Supportassist
3 Github repositories
1 Article
6.8
CVSSv2
CVE-2019-12280
PC-Doctor Toolbox prior to 7.3 has an Uncontrolled Search Path Element.
Pc-doctor Toolbox
Dell Supportassist For Home Pcs 3.2.2
Dell Supportassist For Business Pcs 2.0.1
2 Articles
3.6
CVSSv2
CVE-2021-36286
Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions before 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. Symbolic links can be created by any(non-privileged) user under...
Dell Supportassist Client Consumer
NA
CVE-2022-34384
Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restor...
Dell Command Update
Dell Update
Dell Alienware Update
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs
4.4
CVSSv2
CVE-2021-36297
SupportAssist Client version 3.8 and 3.9 contains an Untrusted search path vulnerability that allows malicious users to load an arbitrary .dll file via .dll planting/hijacking, only by a separate administrative action that is not a default part of the SOSInstallerTool.exe install...
Dell Supportassist For Home Pcs
NA
CVE-2022-34366
Dell SupportAssist for Home PCs (version 3.11.2 and prior) contain Overly Permissive Cross-domain Whitelist vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information.
Dell Supportassist For Home Pcs
NA
CVE-2022-34392
SupportAssist for Home PCs (versions 3.11.4 and prior) contain an insufficient session expiration Vulnerability. An authenticated non-admin user can be able to obtain the refresh token and that leads to reuse the access token and fetch sensitive information.
Dell Supportassist For Home Pcs
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »