Dell SupportAssist for Business PCs version 2.0 and Dell SupportAssist for Home PCs version 2.2, 2.2.1, 2.2.2, 2.2.3, 3.0, 3.0.1, 3.0.2, 3.1, 3.2, and 3.2.1 contain an Improper Privilege Management Vulnerability. A malicious local user can exploit this vulnerability by inheriting a system thread using a leaked thread handle to gain system privileges on the affected machine.
References
Link | Resource |
---|---|
http://www.dell.com/support/article/sln317453 | Vendor Advisory |
http://www.dell.com/support/article/sln317453 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 04:42
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.dell.com/support/article/sln317453 - Vendor Advisory |
Information
Published : 2019-06-20 22:15
Updated : 2024-11-21 04:42
NVD link : CVE-2019-3735
Mitre link : CVE-2019-3735
CVE.ORG link : CVE-2019-3735
JSON object : View
Products Affected
dell
- supportassist_for_business_pcs
- supportassist_for_home_pcs
CWE
CWE-269
Improper Privilege Management