Return to CVE list

CVE-2024-52535

7.1
Critical

CVE-2024-52535

security_alert@emc.com
View on MITREFind on GitHub

Description

Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell SupportAssist for Business PCs versions 4.5.0 and prior, contain a symbolic link (symlink) attack vulnerability in the software remediation component. A low-privileged authenticated user could potentially exploit this vulnerability, gaining privileges escalation, leading to arbitrary deletion of files and folders from the system.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

security_alert@emc.com
https://www.dell.com/support/kbdoc/en-us/000261086/dsa-2024-470-security-update-for-dell-supportassist-for-home-pcs-and-dell-supportassist-for-business-pcs-vulnerabilities