Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell Support Assist OS Recovery versions before 5.5.2 contain an Authentication Bypass vulnerability. An unauthenticated attacker with physical access to the system may exploit this vulnerability by bypassing OS Recovery authentication in order to run arbitrary code on the system as Administrator.
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
使用候选路径或通道进行的认证绕过
Vulnerability Title
DELL SupportAssist OS Recovery 授权问题漏洞
Vulnerability Description
DELL SupportAssist OS Recovery是美国戴尔(DELL)公司的提供了一个恢复环境,其中包含用于诊断和解决在计算机启动到操作系统之前可能发生的问题的工具。 DELL SupportAssist OS Recovery 5.5.2之前版本存在安全漏洞,该漏洞源于存在身份验证绕过漏洞。攻击者利用该漏洞绕过操作系统恢复身份验证,以便在系统上以管理员身份执行意代码。
CVSS Information
N/A
Vulnerability Type
N/A