CVE-2023-48670

Vulnerability

Dell SupportAssist for Home PCs versions 3.14.1 and prior (installer version 3.14.2.45116) contain a privilege escalation vulnerability in the installer component. The vulnerability only affects first-time installations performed before December 21, 2023 [1]. The exact nature of the flaw is not detailed, but it resides in the installer's handling of executable files.

Exploitation

A local low-privileged authenticated attacker can exploit this vulnerability by leveraging the installer's behavior during the installation process. The attacker requires local access to the system and low privileges. The exploitation likely involves manipulating the installer to execute an arbitrary executable with elevated privileges. User interaction may be required (e.g., triggering the installer) [1].

Impact

Successful exploitation allows the attacker to execute arbitrary code on the operating system with elevated privileges, leading to full compromise of confidentiality, integrity, and availability (CVSS 7.3, High) [1].

Mitigation

Dell has released an updated installer version 3.14.2.49747 to remediate this vulnerability. Users should update SupportAssist for Home PCs to the latest version. The vulnerability only affects installations done before December 21, 2023; new installations after that date are not affected [1]. No workarounds are provided.