CVE-2022-34392 in SupportAssist for Home PCsinformazioni

Riassunto

di MITRE • 11/02/2023

SupportAssist for Home PCs (versions 3.11.4 and prior) contain an insufficient session expiration Vulnerability. An authenticated non-admin user can be able to obtain the refresh token and that leads to reuse the access token and fetch sensitive information.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsabile

Dell

Prenotare

23/06/2022

Divulgazione

11/02/2023

Moderazione

accettato

CPE

pronto

EPSS

0.00164

KEV

no

Attività

molto basso

Fonti

Want to stay up to date on a daily basis?

Enable the mail alert feature now!