Home

CVE-2020-5316

Description

Dell SupportAssist for Business PCs versions 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3 and Dell SupportAssist for Home PCs version 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3, 2.2, 2.2.1, 2.2.2, 2.2.3, 3.0, 3.0.1, 3.0.2, 3.1, 3.2, 3.2.1, 3.2.2, 3.3, 3.3.1, 3.3.2, 3.3.3, 3.4 contain an uncontrolled search path vulnerability. A locally authenticated low privileged user could exploit this vulnerability to cause the loading of arbitrary DLLs by the SupportAssist binaries, resulting in the privileged execution of arbitrary code.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.131

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 2.0Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 2.0.1Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 2.0.2Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 2.1Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 2.1.1Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 2.1.2Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 2.1.3Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 2.2Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 2.2.1Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 2.2.2Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 2.2.3Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 3.0Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 3.0.1Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 3.0.2Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 3.1Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 3.2Windows
Vulnerabilities CVE-2019-3735,CVE-2020-5316 are affected in Dell SupportAssist 3.2.1Windows
Vulnerabilities CVE-2019-12280,CVE-2020-5316 are affected in Dell SupportAssist 3.2.2Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 3.3Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 3.3.1Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 3.3.2Windows
Vulnerabilities CVE-2020-5316,CVE-2021-21518 are affected in Dell SupportAssist 3.3.3Windows
Vulnerabilities CVE-2020-5316 are affected in Dell SupportAssist 3.4Windows
Uncontrolled Search Path Element Vulnerability (CVE-2020-5316)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234