Supportassist For Business Pcs

supportassist_for_business_pcs

Vendor: Dell • 19 CVEs

CVEs (19)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-43991 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 4, 2025 Oct 13, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 SupportAssist for Home PCs versions 4.8.2 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contain an UNIX Symbolic Link (Symlink) following vulnerability. A low privileged attacker with local acces...Show more SupportAssist for Home PCs versions 4.8.2 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contain an UNIX Symbolic Link (Symlink) following vulnerability. A low privileged attacker with local access to the system could potentially exploit this vulnerability to delete arbitrary files only in that affected system.Show less
CVE-2025-36613 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Aug 18, 2025 Aug 14, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contain(s) an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access cou...Show more SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contain(s) an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access.Show less
CVE-2025-36612 1Dell 1Supportassist For Business Pcs Aug 18, 2025 Aug 14, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 SupportAssist for Business PCs, version(s) 4.5.3 and prior, contain(s) an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to...Show more SupportAssist for Business PCs, version(s) 4.5.3 and prior, contain(s) an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges.Show less
CVE-2024-52535 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Jan 29, 2025 Dec 25, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell SupportAssist for Business PCs versions 4.5.0 and prior, contain a symbolic link (symlink) attack vulnerability in the software remediation component. A l...Show more Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell SupportAssist for Business PCs versions 4.5.0 and prior, contain a symbolic link (symlink) attack vulnerability in the software remediation component. A low-privileged authenticated user could potentially exploit this vulnerability, gaining privileges escalation, leading to arbitrary deletion of files and folders from the system.Show less
CVE-2023-44283 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Feb 14, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In Dell SupportAssist for Home PCs (between v3.0 and v3.14.1) and SupportAssist for Business PCs (between v3.0 and v3.4.1), a security concern has been identified, impacting locally authenticated users on their respecti...Show more In Dell SupportAssist for Home PCs (between v3.0 and v3.14.1) and SupportAssist for Business PCs (between v3.0 and v3.4.1), a security concern has been identified, impacting locally authenticated users on their respective PCs. This issue may potentially enable privilege escalation and the execution of arbitrary code, in the Windows system context, and confined to that specific local PC. Show less
CVE-2022-34389 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Feb 11, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Dell SupportAssist contains a rate limit bypass issues in screenmeet API third party component. An unauthenticated attacker could potentially exploit this vulnerability and impersonate a legitimate dell customer to a de...Show more Dell SupportAssist contains a rate limit bypass issues in screenmeet API third party component. An unauthenticated attacker could potentially exploit this vulnerability and impersonate a legitimate dell customer to a dell support technician. Show less
CVE-2022-34388 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Feb 11, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain information disclosure vulnerability. A local malicious user with low privileges could exp...Show more Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain information disclosure vulnerability. A local malicious user with low privileges could exploit this vulnerability to view and modify sensitive information in the database of the affected application. Show less
CVE-2022-34387 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Feb 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain a privilege escalation vulnerability. A local authenticated malicious user could potenti...Show more Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain a privilege escalation vulnerability. A local authenticated malicious user could potentially exploit this vulnerability to elevate privileges and gain total control of the system. Show less
CVE-2022-34386 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Feb 11, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exp...Show more Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information. Show less
CVE-2022-34385 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Feb 11, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit...Show more SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information. Show less
CVE-2022-34384 1Dell 5Alienware Update Command UpdateSupportassist For Business Pcs+2 more Nov 21, 2024 Feb 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command \| Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privil...Show more Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command \| Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. A local malicious user may potentially exploit this vulnerability, leading to privilege escalation. Show less
CVE-2022-29095 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Jun 10, 2022 N/A· v4 9.6 CRITICAL· v3 7.6 HIGH· v2 Dell SupportAssist Client Consumer versions (3.10.4 and prior) and Dell SupportAssist Client Commercial versions (3.1.1 and prior) contain a cross-site scripting vulnerability. A remote unauthenticated malicious user cou...Show more Dell SupportAssist Client Consumer versions (3.10.4 and prior) and Dell SupportAssist Client Commercial versions (3.1.1 and prior) contain a cross-site scripting vulnerability. A remote unauthenticated malicious user could potentially exploit this vulnerability under specific conditions leading to execution of malicious code on a vulnerable system.Show less
CVE-2022-29094 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Jun 10, 2022 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion/overwrite vulnerability. Authenticat...Show more Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion/overwrite vulnerability. Authenticated non-admin user could exploit the issue and delete or overwrite arbitrary files on the system.Show less
CVE-2022-29093 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Jun 10, 2022 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion vulnerability. Authenticated non-adm...Show more Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion vulnerability. Authenticated non-admin user could exploit the issue and delete arbitrary files on the system.Show less
CVE-2022-29092 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Jun 10, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Dell SupportAssist Client Consumer versions (3.11.0 and versions prior) and Dell SupportAssist Client Commercial versions (3.2.0 and versions prior) contain a privilege escalation vulnerability. A non-admin user can expl...Show more Dell SupportAssist Client Consumer versions (3.11.0 and versions prior) and Dell SupportAssist Client Commercial versions (3.2.0 and versions prior) contain a privilege escalation vulnerability. A non-admin user can exploit the vulnerability and gain admin access to the system.Show less
CVE-2020-5316 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Jul 22, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Dell SupportAssist for Business PCs versions 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3 and Dell SupportAssist for Home PCs version 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3, 2.2, 2.2.1, 2.2.2, 2.2.3, 3.0, 3.0.1, 3.0....Show more Dell SupportAssist for Business PCs versions 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3 and Dell SupportAssist for Home PCs version 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3, 2.2, 2.2.1, 2.2.2, 2.2.3, 3.0, 3.0.1, 3.0.2, 3.1, 3.2, 3.2.1, 3.2.2, 3.3, 3.3.1, 3.3.2, 3.3.3, 3.4 contain an uncontrolled search path vulnerability. A locally authenticated low privileged user could exploit this vulnerability to cause the loading of arbitrary DLLs by the SupportAssist binaries, resulting in the privileged execution of arbitrary code.Show less
CVE-2021-21518 1Dell 3Supportassist Client Promanage Supportassist For Business PcsSupportassist For Home Pcs Nov 21, 2024 Mar 12, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Dell SupportAssist Client for Consumer PCs versions 3.7.x, 3.6.x, 3.4.x, 3.3.x, Dell SupportAssist Client for Business PCs versions 2.0.x, 2.1.x, 2.2.x, and Dell SupportAssist Client ProManage 1.x contain a DLL injection...Show more Dell SupportAssist Client for Consumer PCs versions 3.7.x, 3.6.x, 3.4.x, 3.3.x, Dell SupportAssist Client for Business PCs versions 2.0.x, 2.1.x, 2.2.x, and Dell SupportAssist Client ProManage 1.x contain a DLL injection vulnerability in the Costura Fody plugin. A local user with low privileges could potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operating system with SYSTEM privileges.Show less
CVE-2019-12280 2Dell Pc Doctor 3Supportassist For Business Pcs Supportassist For Home PcsToolbox Nov 21, 2024 Jun 25, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 PC-Doctor Toolbox before 7.3 has an Uncontrolled Search Path Element.
CVE-2019-3735 1Dell 2Supportassist For Business Pcs Supportassist For Home Pcs Nov 21, 2024 Jun 20, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Dell SupportAssist for Business PCs version 2.0 and Dell SupportAssist for Home PCs version 2.2, 2.2.1, 2.2.2, 2.2.3, 3.0, 3.0.1, 3.0.2, 3.1, 3.2, and 3.2.1 contain an Improper Privilege Management Vulnerability. A malic...Show more Dell SupportAssist for Business PCs version 2.0 and Dell SupportAssist for Home PCs version 2.2, 2.2.1, 2.2.2, 2.2.3, 3.0, 3.0.1, 3.0.2, 3.1, 3.2, and 3.2.1 contain an Improper Privilege Management Vulnerability. A malicious local user can exploit this vulnerability by inheriting a system thread using a leaked thread handle to gain system privileges on the affected machine.Show less