Vulnerabilities > Dell > Supportassist FOR Home PCS > 3.2.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-02-11 | CVE-2022-34384 | Improper Privilege Management vulnerability in Dell products Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. | 7.8 |
2023-02-11 | CVE-2022-34385 | Inadequate Encryption Strength vulnerability in Dell products SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. | 5.5 |
2023-02-11 | CVE-2022-34386 | Use of Hard-coded Credentials vulnerability in Dell products Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. | 5.5 |
2023-02-11 | CVE-2022-34387 | Exposure of Resource to Wrong Sphere vulnerability in Dell products Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain a privilege escalation vulnerability. | 7.8 |
2023-02-11 | CVE-2022-34388 | Cleartext Storage of Sensitive Information vulnerability in Dell products Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain information disclosure vulnerability. | 7.1 |
2023-02-11 | CVE-2022-34389 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell products Dell SupportAssist contains a rate limit bypass issues in screenmeet API third party component. | 5.3 |
2023-02-11 | CVE-2022-34392 | Insufficient Session Expiration vulnerability in Dell Supportassist for Home PCS SupportAssist for Home PCs (versions 3.11.4 and prior) contain an insufficient session expiration Vulnerability. | 5.5 |
2023-02-10 | CVE-2022-34366 | Incorrect Comparison vulnerability in Dell Supportassist for Home PCS Dell SupportAssist for Home PCs (version 3.11.2 and prior) contain Overly Permissive Cross-domain Whitelist vulnerability. | 6.5 |
2022-06-10 | CVE-2022-29092 | Uncontrolled Search Path Element vulnerability in Dell products Dell SupportAssist Client Consumer versions (3.11.0 and versions prior) and Dell SupportAssist Client Commercial versions (3.2.0 and versions prior) contain a privilege escalation vulnerability. | 7.2 |
2022-06-10 | CVE-2022-29093 | Path Traversal vulnerability in Dell products Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion vulnerability. | 3.6 |