PT-2023-13372 · Dell · Dell Supportassist For Business Pcs+1
Published
2023-02-10
·
Updated
2023-02-21
·
CVE-2022-34386
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Dell SupportAssist for Home PCs versions 3.11.4 and prior
Dell SupportAssist for Business PCs versions 3.2.0 and prior
Description
The issue is related to a cryptographic weakness. An authenticated non-admin user could potentially exploit this issue and obtain sensitive information.
Recommendations
For Dell SupportAssist for Home PCs versions 3.11.4 and prior, update to a version later than 3.11.4 to resolve the issue.
For Dell SupportAssist for Business PCs versions 3.2.0 and prior, update to a version later than 3.2.0 to resolve the issue.
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs