CVE-2022-34386

Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information.
References
Link Resource
https://www.dell.com/support/kbdoc/000204114 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:dell:supportassist_for_business_pcs:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:supportassist_for_home_pcs:*:*:*:*:*:*:*:*

History

07 Nov 2023, 03:48

Type Values Removed Values Added
Summary Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information. Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information.

Information

Published : 2023-02-11 01:23

Updated : 2024-02-28 19:51


NVD link : CVE-2022-34386

Mitre link : CVE-2022-34386

CVE.ORG link : CVE-2022-34386


JSON object : View

Products Affected

dell

  • supportassist_for_home_pcs
  • supportassist_for_business_pcs
CWE
CWE-798

Use of Hard-coded Credentials

CWE-321

Use of Hard-coded Cryptographic Key