CVE-2019-3718
7.6
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
Summary
Dell SupportAssist Client versions prior to 3.2.0.90 contain an improper origin validation vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to attempt CSRF attacks on users of the impacted systems.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Dell | SupportAssist Client | unspecified < 3.2.0.90 | affected |
Weaknesses
- Improper Origin Validation
ADP Enrichment
CVE Program Container
Additional References
- https://www.dell.com/support/article/us/en/19/sln316857/dsa-2019-051-dell-supportassist-client-multiple-vulnerabilities?lang=en
- http://www.securityfocus.com/bid/108020
References
- https://www.dell.com/support/article/us/en/19/sln316857/dsa-2019-051-dell-supportassist-client-multiple-vulnerabilities?lang=en
- http://www.securityfocus.com/bid/108020
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.