CVE-2022-34388 — HIGH (7.1)

Q: How severe is CVE-2022-34388?

CVE-2022-34388 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-34388?

Check the references section above for vendor advisories and patch information. Affected products include: Dell Supportassist For Business Pcs, Dell Supportassist For Home Pcs.

Vulnerability Description

Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain information disclosure vulnerability. A local malicious user with low privileges could exploit this vulnerability to view and modify sensitive information in the database of the affected application.

CVSS Score

7.1

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Dell	Supportassist For Business Pcs	<= 3.2.0
Dell	Supportassist For Home Pcs	<= 3.11.4

Related Weaknesses (CWE)

CWE-318 CWE-312

References

https://www.dell.com/support/kbdoc/000204114Vendor Advisory
https://www.dell.com/support/kbdoc/000204114Vendor Advisory

FAQ

What is CVE-2022-34388?

CVE-2022-34388 is a vulnerability with a CVSS score of 7.1 (HIGH). Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain information disclosure vulnerability. A local malicious user with low ...

How severe is CVE-2022-34388?

CVE-2022-34388 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-34388?

Check the references section above for vendor advisories and patch information. Affected products include: Dell Supportassist For Business Pcs, Dell Supportassist For Home Pcs.