CVE-2021-21518
Published Mar 12, 2021
Last updated 4 years ago
Overview
- Description
- Dell SupportAssist Client for Consumer PCs versions 3.7.x, 3.6.x, 3.4.x, 3.3.x, Dell SupportAssist Client for Business PCs versions 2.0.x, 2.1.x, 2.2.x, and Dell SupportAssist Client ProManage 1.x contain a DLL injection vulnerability in the Costura Fody plugin. A local user with low privileges could potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operating system with SYSTEM privileges.
- Source
- security_alert@emc.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dell:supportassist_client_promanage:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CD3C2335-489E-4886-A576-4BBD3AC98870"
},
{
"criteria": "cpe:2.3:a:dell:supportassist_for_business_pcs:2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CD01BE4E-FF64-43DC-B2B7-F2F6BDA8F269"
},
{
"criteria": "cpe:2.3:a:dell:supportassist_for_business_pcs:2.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "97A49CD3-DC0D-4404-9FBD-8BD6801E1B27"
},
{
"criteria": "cpe:2.3:a:dell:supportassist_for_business_pcs:2.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D5C12BF6-07A7-401E-BF43-27EEEDFA1598"
},
{
"criteria": "cpe:2.3:a:dell:supportassist_for_home_pcs:3.3.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7749B9C9-72A5-47C7-B8F5-5AB11CD2B130"
},
{
"criteria": "cpe:2.3:a:dell:supportassist_for_home_pcs:3.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "39D7A1D4-D5A2-49AA-9186-0F3D345D6585"
},
{
"criteria": "cpe:2.3:a:dell:supportassist_for_home_pcs:3.6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1083A3BD-E9B8-40C8-83B1-218CB6D76A0A"
},
{
"criteria": "cpe:2.3:a:dell:supportassist_for_home_pcs:3.7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D9CFC107-2F62-4FFA-BE21-582981E8D503"
}
],
"operator": "OR"
}
]
}
]