Dell SupportAssist for Home PCs Installer exe version 4.0.3 contains a privilege escalation vulnerability in the installer. A local low-privileged authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary executables on the operating system with elevated privileges.
Metrics
Affected Vendors & Products
References
History
Wed, 21 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Dell
Dell supportassist For Home Pcs |
|
CPEs | cpe:2.3:a:dell:supportassist_for_home_pcs:4.0.3:*:*:*:*:*:*:* | |
Vendors & Products |
Dell
Dell supportassist For Home Pcs |
|
Metrics |
ssvc
|
Wed, 21 Aug 2024 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Dell SupportAssist for Home PCs Installer exe version 4.0.3 contains a privilege escalation vulnerability in the installer. A local low-privileged authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary executables on the operating system with elevated privileges. | |
Weaknesses | CWE-426 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: dell
Published: 2024-08-21T01:54:46.614Z
Updated: 2024-08-21T13:41:13.029Z
Reserved: 2024-06-13T14:41:01.527Z
Link: CVE-2024-38305
Vulnrichment
Updated: 2024-08-21T13:41:06.736Z
NVD
Status : Analyzed
Published: 2024-08-21T03:15:05.020
Modified: 2024-11-25T18:16:27.450
Link: CVE-2024-38305
Redhat
No data.