Dell SupportAssist Client versions prior to 3.2.0.90 contain a remote code execution vulnerability. An unauthenticated attacker, sharing the network access layer with the vulnerable system, can compromise the vulnerable system by tricking a victim user into downloading and executing arbitrary executables via SupportAssist client from attacker hosted sites.
References
Link | Resource |
---|---|
https://www.dell.com/support/article/us/en/19/sln316857/dsa-2019-051-dell-supportassist-client-multiple-vulnerabilities?lang=en | Patch Vendor Advisory |
Configurations
History
01 Jan 2022, 20:16
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo |
Information
Published : 2019-04-18 20:29
Updated : 2023-12-10 12:59
NVD link : CVE-2019-3719
Mitre link : CVE-2019-3719
CVE.ORG link : CVE-2019-3719
JSON object : View
Products Affected
dell
- supportassist
CWE