CVE-2022-34387

Vulnerability

Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain a privilege escalation vulnerability. The bug resides in proprietary code and requires the attacker to have local authenticated access to the system. The exact component or function is not detailed in the available references [1].

Exploitation

A local authenticated malicious user can exploit this vulnerability by executing code or following a specific sequence of actions that leverage the flaw. The CVSS vector (CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H) indicates the attack complexity is high and the attacker must already have high privileges, suggesting the escalation allows moving from a high-privilege account to full system control [1].

Impact

If successfully exploited, the attacker achieves privilege escalation and gains total control of the system. This results in a full compromise of confidentiality, integrity, and availability (CIA) of the affected system, with a CVSS base score of 6.4 (Medium) [1].

Mitigation

Dell released a security update for SupportAssist. For Home PCs, version 3.11.5 or later contains the fix; for Business PCs, version 3.3.0 or later contains the fix. Users should update to these versions as instructed in the Dell support bulletin DSA-2022-190 [1].