Vulnerability Details CVE-2019-3719
Dell SupportAssist Client versions prior to 3.2.0.90 contain a remote code execution vulnerability. An unauthenticated attacker, sharing the network access layer with the vulnerable system, can compromise the vulnerable system by tricking a victim user into downloading and executing arbitrary executables via SupportAssist client from attacker hosted sites.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.266
EPSS Ranking 96.1%
CVSS Severity
CVSS v3 Score 7.1
CVSS v2 Score 7.9
References
Products affected by CVE-2019-3719
-
cpe:2.3:a:dell:supportassist:-