AnsweredAssumed Answered

Dell SupportAssist Vulnerable to RCE

Question asked by derekv on May 2, 2019

FYI, 

 

Dell SupportAssist, much like all other computer vendor "support" software has been noted as having a RCE vulnerability. Qualys doesn't currently support detection for them (CVE-2019-3718, CVE-2019-3719, https://www.dell.com/support/article/us/en/04/sln316857/dsa-2019-051-dell-supportassist-client-multiple-vulnerabilities?lang=en). 

 

I have a FR for them to create: 648537

 

You can also check by using software search (either in VM or AM) to see if you have vulnerable hosts. 

Outcomes