VYPR

SupportAssist OS Recovery

by Dell

CVEs (7)

  • CVE-2025-22480HigFeb 13, 2025
    risk 0.46cvss 7.0epss 0.00

    Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary file deletion and Elevation of Privileges.

  • CVE-2022-26865MedMay 26, 2022
    risk 0.44cvss 6.8epss 0.00

    Dell Support Assist OS Recovery versions before 5.5.2 contain an Authentication Bypass vulnerability. An unauthenticated attacker with physical access to the system may exploit this vulnerability by bypassing OS Recovery authentication in order to run arbitrary code on the…

  • CVE-2025-46685Jan 13, 2026
    risk 0.00cvss epss 0.00

    Dell SupportAssist OS Recovery, versions prior to 5.5.15.1, contain a Creation of Temporary File With Insecure Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.

  • CVE-2025-46684Jan 13, 2026
    risk 0.00cvss epss 0.00

    Dell SupportAssist OS Recovery, versions prior to 5.5.15.1, contain a Creation of Temporary File With Insecure Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information Tampering.

  • CVE-2025-46602Oct 27, 2025
    risk 0.00cvss epss 0.00

    Dell SupportAssist OS Recovery, versions prior to 5.5.15.0, contain an Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information…

  • CVE-2025-38746Aug 6, 2025
    risk 0.00cvss epss 0.00

    Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Information Disclosure.

  • CVE-2025-38747Aug 6, 2025
    risk 0.00cvss epss 0.00

    Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contain a Creation of Temporary File With Insecure Permissions vulnerability. A local authenticated attacker could potentially exploit this vulnerability, leading to Elevation of Privileges.