Executive Summary

Informations
NameCVE-2019-3719First vendor Publication2019-04-18
VendorCveLast vendor Modification2019-05-13

Security-Database Scoring CVSS v2

Cvss vector : (AV:A/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score7.9Attack RangeAdjacent network
Cvss Impact Score10Attack ComplexityMedium
Cvss Expoit Score5.5AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Dell SupportAssist Client versions prior to 3.2.0.90 contain a remote code execution vulnerability. An unauthenticated attacker, sharing the network access layer with the vulnerable system, can compromise the vulnerable system by tricking a victim user into downloading and executing arbitrary executables via SupportAssist client from attacker hosted sites.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3719

CWE : Common Weakness Enumeration

%idName
100 %CWE-20Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

Nessus® Vulnerability Scanner

DateDescription
2010-03-22Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2019.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
MISC https://www.dell.com/support/article/us/en/19/sln316857/dsa-2019-051-dell-sup...

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
DateInformations
2019-05-13 21:19:27
  • Multiple Updates
2019-04-24 21:19:45
  • Multiple Updates
2019-04-23 17:19:03
  • Multiple Updates
2019-04-22 21:19:19
  • Multiple Updates
2019-04-19 05:18:06
  • First insertion