MEDIUMπŸ‡΅πŸ‡± Wersja polska

CVE-2022-26865

CVSS 6.8v3.1pub. 2022-05-26upd. 2024-11-21

Dell Support Assist OS Recovery versions before 5.5.2 contain an Authentication Bypass vulnerability. An unauthenticated attacker with physical access to the system may exploit this vulnerability by bypassing OS Recovery authentication in order to run arbitrary code on the system as Administrator.

CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dell Supportassist Os Recovery

    APP
    Dell
    5.5.1
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2025-46685HIGH7.5ten sam produkt

Dell SupportAssist OS Recovery, versions prior to 5.5.15.1, contain a Creation of Temporary File With Insecure...

CVE-2025-38747HIGH7.8ten sam produkt

Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contain a Creation of Temporary File With Insecure...

CVE-2025-22480HIGH7.0ten sam produkt

Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-...

CVE-2025-46684MEDIUM6.6ten sam produkt

Dell SupportAssist OS Recovery, versions prior to 5.5.15.1, contain a Creation of Temporary File With Insecure...

CVE-2025-46602MEDIUM4.4ten sam produkt

Dell SupportAssist OS Recovery, versions prior to 5.5.15.0, contain an Insertion of Sensitive Information into...

CVE-2022-26865 β€” Dell β€” Supportassist Os Recovery β€” MEDIUM β€” CVSS 6.8 | CVEbaza.pl