Vulnerabilities > Dell > Supportassist FOR Home PCS
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-25 | CVE-2024-52535 | Link Following vulnerability in Dell products Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell SupportAssist for Business PCs versions 4.5.0 and prior, contain a symbolic link (symlink) attack vulnerability in the software remediation component. | 8.8 |
| 2024-08-21 | CVE-2024-38305 | Unspecified vulnerability in Dell Supportassist for Home PCS 4.0.3 Dell SupportAssist for Home PCs Installer exe version 4.0.3 contains a privilege escalation vulnerability in the installer. | 7.3 |
| 2024-02-14 | CVE-2023-25535 | Unspecified vulnerability in Dell Supportassist for Home PCS Dell SupportAssist for Home PCs Installer Executable file version prior to 3.13.2.19 used for initial installation has a high vulnerability that can result in local privilege escalation (LPE). | 6.5 |
| 2024-02-14 | CVE-2023-39249 | Unspecified vulnerability in Dell Supportassist for Home PCS 3.4.0 Dell SupportAssist for Business PCs version 3.4.0 contains a local Authentication Bypass vulnerability that allows locally authenticated non-admin users to gain temporary privilege within the SupportAssist User Interface on their respective PC. | 5.3 |
| 2024-02-14 | CVE-2023-44283 | Unspecified vulnerability in Dell products In Dell SupportAssist for Home PCs (between v3.0 and v3.14.1) and SupportAssist for Business PCs (between v3.0 and v3.4.1), a security concern has been identified, impacting locally authenticated users on their respective PCs. | 7.8 |
| 2023-12-22 | CVE-2023-48670 | Untrusted Search Path vulnerability in Dell Supportassist for Home PCS 3.14.2.45116 Dell SupportAssist for Home PCs version 3.14.1 and prior versions contain a privilege escalation vulnerability in the installer. | 7.8 |
| 2023-02-11 | CVE-2022-34384 | Improper Privilege Management vulnerability in Dell products Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. | 7.8 |
| 2023-02-11 | CVE-2022-34385 | Inadequate Encryption Strength vulnerability in Dell products SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. | 5.5 |
| 2023-02-11 | CVE-2022-34386 | Use of Hard-coded Credentials vulnerability in Dell products Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. | 5.5 |
| 2023-02-11 | CVE-2022-34387 | Exposure of Resource to Wrong Sphere vulnerability in Dell products Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain a privilege escalation vulnerability. | 7.8 |