20 matches found
EUVD-2021-22917
Malware in sbrugna...
EUVD-2022-33504
Malicious code in bioql PyPI...
EUVD-2022-33503
Malicious code in bioql PyPI...
EUVD-2021-8790
Malicious code in bioql PyPI...
Dell SupportAssist Client 安全漏洞
Dell SupportAssist Client is a client application from Dell USA. The program provides automated, proactive and predictive techniques for troubleshooting and more. A security vulnerability exists in Dell SupportAssist Client that stems from a software fix component that contains a symbolic link...
CVE-2022-34384
Dell SupportAssist Client Consumer version 3.11.1 and prior, SupportAssist Client Commercial version 3.2 and prior, Dell Command | Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. A local...
Dell SupportAssist Client Consumer and Dell SupportAssist Client Commercial arbitrary file deletion/overwrite vulnerability
Dell SupportAssist Client is a client application from Dell USA. The program provides automated, proactive and predictive techniques for troubleshooting, etc. Dell SupportAssist Client Consumer and Dell SupportAssist Client Commercial are vulnerable to an arbitrary file deletion/overwrite...
Dell SupportAssist Client Consumer and Dell SupportAssist Client Commercial Code Issue Vulnerability
Dell SupportAssist Client is a client application from Dell USA. The program provides automated, proactive and predictive techniques for troubleshooting, etc. The Dell SupportAssist Client Consumer and Dell SupportAssist Client Commercial code issue vulnerability could be exploited by an attacker...
CVE-2022-29094
Dell SupportAssist Client (Consumer 3.10.4 and earlier; Commercial 3.1.1 and earlier) contains an arbitrary file deletion/overwrite vulnerability. An authenticated non‑admin user can delete or overwrite arbitrary files on the system. The issue is documented as CVE-2022-29094; CVSS data in the pro...
Dell SupportAssist Client 代码问题漏洞
Dell SupportAssist Client is a client application from Dell USA. The program provides automated, proactive and predictive techniques for troubleshooting, etc. The Dell SupportAssist Client Consumer and Dell SupportAssist Client Commercial code issue vulnerability could be exploited by an attacker...
Dell SupportAssist Client Consumer Arbitrary File Deletion Vulnerability
Dell SupportAssist Client is a client application from Dell of America DELL. The program provides automated, proactive and predictive techniques for troubleshooting, etc. An arbitrary file deletion vulnerability exists in Dell SupportAssist Client Consumer 3.9.13.0 and prior versions. An attacker...
CVE-2021-36297
SupportAssist Client version 3.8 and 3.9 contains an Untrusted search path vulnerability that allows attackers to load an arbitrary .dll file via .dll planting/hijacking, only by a separate administrative action that is not a default part of the SOSInstallerTool.exe installation for executing...
CVE-2021-36297
Summary: CVE-2021-36297 affects Dell SupportAssist Client to 3.9 via an untrusted search path vulnerability that enables loading an arbitrary DLL through DLL planting/hijacking. The exploit requires a separate administrative action and is not part of the default SOSInstallerTool.exe installation....
CVE-2021-36297
SupportAssist Client version 3.8 and 3.9 contains an Untrusted search path vulnerability that allows attackers to load an arbitrary .dll file via .dll planting/hijacking, only by a separate administrative action that is not a default part of the SOSInstallerTool.exe installation for executing...
Dell SupportAssist Client 后置链接漏洞
Dell SupportAssist Client is a client application from Dell of America DELL. The program provides automated, proactive and predictive techniques for troubleshooting, etc. An arbitrary file deletion vulnerability exists in Dell SupportAssist Client Consumer 3.9.13.0 and prior versions. An attacker...
SupportAssist Client 代码问题漏洞
Dell SupportAssist Client is a client application from Dell DELL, USA. The program provides automated, proactive and predictive techniques for troubleshooting, etc. Dell SupportAssist Client has a code issue vulnerability that can be exploited by attackers to load arbitrary .dll files using .dll...
CVE-2021-21518
Dell SupportAssist Client for Consumer PCs versions 3.7.x, 3.6.x, 3.4.x, 3.3.x, Dell SupportAssist Client for Business PCs versions 2.0.x, 2.1.x, 2.2.x, and Dell SupportAssist Client ProManage 1.x contain a DLL injection vulnerability in the Costura Fody plugin. A local user with low privileges...
Dell Security Support Tool Harbors High-Severity Flaws
Two high-severity flaws in Dell’s client support tool, SupportAssist Client, could enable remote code-execution RCE and cross-site request forgery CSRF attacks. SupportAssist helps users remove viruses or detect security issues on their PCs, and comes preinstalled on most new Dell devices. “Dell...
CVE-2019-3718
Dell SupportAssist Client versions prior to 3.2.0.90 contain an improper origin validation vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to attempt CSRF attacks on users of the impacted systems...
PT-2019-16663 · Dell · Dell Supportassist Client
Name of the Vulnerable Software and Affected Versions: Dell SupportAssist Client versions prior to 3.2.0.90 Description: The issue concerns an improper origin validation, which could be exploited by an unauthenticated remote attacker to attempt CSRF attacks on users of the impacted systems...