Dell Supportassist Client vulnerabilities
2 known vulnerabilities affecting dell/supportassist_client.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2019-3719P3HIGHCVSS 8.0≥ unspecified, < 3.2.0.902019-04-18
CVE-2019-3719 [HIGH] CVE-2019-3719: Dell SupportAssist Client versions prior to 3.2.0.90 contain a remote code execution vulnerability.
Dell SupportAssist Client versions prior to 3.2.0.90 contain a remote code execution vulnerability. An unauthenticated attacker, sharing the network access layer with the vulnerable system, can compromise the vulnerable system by tricking a victim user into downloading and executing arbitrary executables via SupportAssist client from attacker hosted sites.
nvd
CVE-2019-3718P3HIGHCVSS 8.8≥ unspecified, < 3.2.0.902019-04-18
CVE-2019-3718 [HIGH] CWE-352 CVE-2019-3718: Dell SupportAssist Client versions prior to 3.2.0.90 contain an improper origin validation vulnerabi
Dell SupportAssist Client versions prior to 3.2.0.90 contain an improper origin validation vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to attempt CSRF attacks on users of the impacted systems.
nvd