CVE-2022-34385

SupportAssist for Home PCs (version 3.11.4 and prior) and  SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information.
References
Link Resource
https://www.dell.com/support/kbdoc/000204114 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:dell:supportassist_for_business_pcs:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:supportassist_for_home_pcs:*:*:*:*:*:*:*:*

History

07 Nov 2023, 03:48

Type Values Removed Values Added
Summary SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information. SupportAssist for Home PCs (version 3.11.4 and prior) and  SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information.

Information

Published : 2023-02-11 01:23

Updated : 2024-02-28 19:51


NVD link : CVE-2022-34385

Mitre link : CVE-2022-34385

CVE.ORG link : CVE-2022-34385


JSON object : View

Products Affected

dell

  • supportassist_for_home_pcs
  • supportassist_for_business_pcs
CWE
CWE-326

Inadequate Encryption Strength