Dell Supportassist

Symlink Follow in Dell SupportAssist <=4.8.2 Home / <=4.5.3 Biz, File Delete
CVE-2025-43991 6.3 - Medium - October 13, 2025

SupportAssist for Home PCs versions 4.8.2 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contain an UNIX Symbolic Link (Symlink) following vulnerability. A low privileged attacker with local access to the system could potentially exploit this vulnerability to delete arbitrary files only in that affected system.

Symlink following

Dell SupportAssist v4.6.3-4.5.3 Local Privilege Escalation Vulnerability
CVE-2025-36613 7.8 - High - August 14, 2025

SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contain(s) an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access.

Incorrect Privilege Assignment

Dell SupportAssist OS Recovery <5.5.13.1 - SymLink Attack Allows EoP
CVE-2025-22480 7.8 - High - February 13, 2025

Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary file deletion and Elevation of Privileges.

insecure temporary file

Dell SupportAssist Installer 4.0.3 PrivEsc via Arbitrary Exec
CVE-2024-38305 7.3 - High - August 21, 2024

Dell SupportAssist for Home PCs Installer exe version 4.0.3 contains a privilege escalation vulnerability in the installer. A local low-privileged authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary executables on the operating system with elevated privileges.

Untrusted Path

Dell SupportAssist Privilege Escalation v3.0v3.14.1 (Windows)
CVE-2023-44283 7.8 - High - February 14, 2024

In Dell SupportAssist for Home PCs (between v3.0 and v3.14.1) and SupportAssist for Business PCs (between v3.0 and v3.4.1), a security concern has been identified, impacting locally authenticated users on their respective PCs. This issue may potentially enable privilege escalation and the execution of arbitrary code, in the Windows system context, and confined to that specific local PC.

Authorization

Dell SupportAssist 3.4.0 Local Auth Bypass Grants 15Min Temp Admin Privileges
CVE-2023-39249 5.3 - Medium - February 14, 2024

Dell SupportAssist for Business PCs version 3.4.0 contains a local Authentication Bypass vulnerability that allows locally authenticated non-admin users to gain temporary privilege within the SupportAssist User Interface on their respective PC. The Run as Admin temporary privilege feature enables IT/System Administrators to perform driver scans and Dell-recommended driver installations without requiring them to log out of the local non-admin user session. However, the granted privilege is limited solely to the SupportAssist User Interface and automatically expires after 15 minutes.

Dell SupportAssist ScreenMeet API RateLimit Bypass Enables Impersonation
CVE-2022-34389 5.3 - Medium - February 11, 2023

Dell SupportAssist contains a rate limit bypass issues in screenmeet API third party component. An unauthenticated attacker could potentially exploit this vulnerability and impersonate a legitimate dell customer to a dell support technician.

Improper Restriction of Excessive Authentication Attempts

Info Disclosure in Dell SupportAssist 3.11.4/3.2.0 via Local Low-Priv User
CVE-2022-34388 7.1 - High - February 11, 2023

Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain information disclosure vulnerability. A local malicious user with low privileges could exploit this vulnerability to view and modify sensitive information in the database of the affected application.

Cleartext Storage of Sensitive Information

Dell SupportAssist Home PC <3.11.4 Priv Escalation
CVE-2022-34387 7.8 - High - February 11, 2023

Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain a privilege escalation vulnerability. A local authenticated malicious user could potentially exploit this vulnerability to elevate privileges and gain total control of the system.

Exposure of Resource to Wrong Sphere

Dell SupportAssist Crypto Weakness (v3.11.4/3.2.0) Auth Non-Admin Info Leak
CVE-2022-34386 5.5 - Medium - February 11, 2023

Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information.

Use of Hard-coded Credentials

Dell SupportAssist (v3.11.4/<3.2) Crypto Weakness: Auth Non-Admin Info Leak
CVE-2022-34385 5.5 - Medium - February 11, 2023

SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information.

Inadequate Encryption Strength

Dell SupportAssist Client versions prior to 3.2.0.90 contain an improper origin validation vulnerability
CVE-2019-3718 8.8 - High - April 18, 2019

Dell SupportAssist Client versions prior to 3.2.0.90 contain an improper origin validation vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to attempt CSRF attacks on users of the impacted systems.

Session Riding

Dell SupportAssist Client versions prior to 3.2.0.90 contain a remote code execution vulnerability
CVE-2019-3719 8 - High - April 18, 2019

Dell SupportAssist Client versions prior to 3.2.0.90 contain a remote code execution vulnerability. An unauthenticated attacker, sharing the network access layer with the vulnerable system, can compromise the vulnerable system by tricking a victim user into downloading and executing arbitrary executables via SupportAssist client from attacker hosted sites.