CVE-2023-44283

In Dell SupportAssist for Home PCs (between v3.0 and v3.14.1) and SupportAssist for Business PCs (between v3.0 and v3.4.1), a security concern has been identified, impacting locally authenticated users on their respective PCs. This issue may potentially enable privilege escalation and the execution of arbitrary code, in the Windows system context, and confined to that specific local PC.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:dell:supportassist_for_business_pcs:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:supportassist_for_home_pcs:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:25

Type Values Removed Values Added
References () https://www.dell.com/support/kbdoc/en-us/000219086/dsa-2023-401-security-update-for-dell-supportassist-for-home-pcs-and-dell-supportassist-for-business-pcs-user-interface-component - Vendor Advisory () https://www.dell.com/support/kbdoc/en-us/000219086/dsa-2023-401-security-update-for-dell-supportassist-for-home-pcs-and-dell-supportassist-for-business-pcs-user-interface-component - Vendor Advisory

17 Oct 2024, 14:29

Type Values Removed Values Added
First Time Dell
Dell supportassist For Home Pcs
Dell supportassist For Business Pcs
References () https://www.dell.com/support/kbdoc/en-us/000219086/dsa-2023-401-security-update-for-dell-supportassist-for-home-pcs-and-dell-supportassist-for-business-pcs-user-interface-component - () https://www.dell.com/support/kbdoc/en-us/000219086/dsa-2023-401-security-update-for-dell-supportassist-for-home-pcs-and-dell-supportassist-for-business-pcs-user-interface-component - Vendor Advisory
CWE NVD-CWE-noinfo
CPE cpe:2.3:a:dell:supportassist_for_home_pcs:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:supportassist_for_business_pcs:*:*:*:*:*:*:*:*

14 Feb 2024, 08:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-14 08:15

Updated : 2024-11-21 08:25


NVD link : CVE-2023-44283

Mitre link : CVE-2023-44283

CVE.ORG link : CVE-2023-44283


JSON object : View

Products Affected

dell

  • supportassist_for_business_pcs
  • supportassist_for_home_pcs
CWE
CWE-284

Improper Access Control

NVD-CWE-noinfo