RSS   Vulnerabilities for 'Supportassist for business pcs'   RSS

2022-06-10
 
CVE-2022-29092

CWE-427
 

 
Dell SupportAssist Client Consumer versions (3.11.0 and versions prior) and Dell SupportAssist Client Commercial versions (3.2.0 and versions prior) contain a privilege escalation vulnerability. A non-admin user can exploit the vulnerability and gain admin access to the system.

 
 
CVE-2022-29093

CWE-22
 

 
Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion vulnerability. Authenticated non-admin user could exploit the issue and delete arbitrary files on the system.

 
 
CVE-2022-29094

CWE-22
 

 
Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion/overwrite vulnerability. Authenticated non-admin user could exploit the issue and delete or overwrite arbitrary files on the system.

 
 
CVE-2022-29095

CWE-79
 

 
Dell SupportAssist Client Consumer versions (3.10.4 and prior) and Dell SupportAssist Client Commercial versions (3.1.1 and prior) contain a cross-site scripting vulnerability. A remote unauthenticated malicious user could potentially exploit this vulnerability under specific conditions leading to execution of malicious code on a vulnerable system.

 
2021-03-12
 
CVE-2021-21518

CWE-427
 

 
Dell SupportAssist Client for Consumer PCs versions 3.7.x, 3.6.x, 3.4.x, 3.3.x, Dell SupportAssist Client for Business PCs versions 2.0.x, 2.1.x, 2.2.x, and Dell SupportAssist Client ProManage 1.x contain a DLL injection vulnerability in the Costura Fody plugin. A local user with low privileges could potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operating system with SYSTEM privileges.

 
2019-06-25
 
CVE-2019-12280

CWE-427
 

 
PC-Doctor Toolbox before 7.3 has an Uncontrolled Search Path Element.

 
2019-06-20
 
CVE-2019-3735

CWE-264
 

 
Dell SupportAssist for Business PCs version 2.0 and Dell SupportAssist for Home PCs version 2.2, 2.2.1, 2.2.2, 2.2.3, 3.0, 3.0.1, 3.0.2, 3.1, 3.2, and 3.2.1 contain an Improper Privilege Management Vulnerability. A malicious local user can exploit this vulnerability by inheriting a system thread using a leaked thread handle to gain system privileges on the affected machine.

 

 >>> Vendor: DELL 195 Products
Openmanage
Truemobile 1300 wlan mini-pci card util trayapplet
Truemobile 2300 wireless broadband router
3000cn
3010cn
3100cn
3110cn
5100cn
5110cn
Asset manager
Openmanage cd
Remote access card
BIOS
Dellsystemlite.scanner activex control
Kace k2000 systems deployment appliance
Powervault ml6000 firmware
Powervault ml6000
Powervault ml6010
Powervault ml6020
Powervault ml6030
Wyse device manager
Sonicwall scrutinizer
Sonicwall scrutinizer with flow analytics module
Crowbar
Sonicwall viewpoint
Openmanage server administrator
Powerconnect 6248p
Idrac6 bmc
Idrac6 firmware
Latitude d
Latitude e
Latitude xt2
Latitude z600
Precision m
Latitude d530
Latitude d531
Latitude d630
Latitude d631
Latitude d830
Latitude e4200
Latitude e4300
Latitude e5400
Latitude e5500
Latitude e6400
Latitude e6400 atg
Latitude e6400 atg xfr
Latitude e6500
Precision m2300
Precision m2400
Precision m4300
Precision m4400
Precision m6300
Precision m6400
Precision m6500
Idrac6 monolithic
Idrac7
Idrac7 firmware
Quest one password manager
Unisphere
Sonicwall analyzer
Sonicwall global management system
Sonicwall universal management appliance e5000 software
Sonicwall universal management appliance e5000
Powerconnect 3348
Powerconnect 3524p
Powerconnect 5324
Kace k1000 systems management appliance software
Kace k1000 systems management virtual appliance
Kace k1000 systems management appliance
Kace k1100s systems management appliance
Kace k1200s systems management appliance
Sonicwall network security appliance 2400
Sonicwall email security
Sonicwall umaem5000
Equallogic ps4000 firmware
Idrac6 modular
Sonicwall sonicos
Sonicwall secure remote access firmware
System update
Sonicwall umaem5000 firmware
Netvault backup
Sonicwall netextender firmware
Sonicwall totalsecure tz 100 firmware
Pre-boot authentication driver
Sonicwall uma em5000 firmware
Secureworks
Km714 firmware
Km632 firmware
Rsa via lifecycle and governance
Solutions enabler
Idrac8 firmware
Sonicwall secure remote access server
Integrated remote access controller firmware
Rsa identity governance and lifecycle
Storage manager 2016
Emc supportassist enterprise
Emc vmax embedded management
Emc isilon
Emc isilon onefs
Emc networker
See all Products for Vendor DELL


Copyright 2024, cxsecurity.com

 

Back to Top