Primary

Context

Dell SupportAssist OS Recovery Temporary File Vulnerability Leading to Privilege Escalation

Vulnerability

Patched

A vulnerability exists in Dell SupportAssist OS Recovery versions prior to 5.5.14.0, allowing local authenticated attackers to exploit the creation of temporary files with insecure permissions. This could lead to unauthorized elevation of privileges.

Impact

Exploitation of this vulnerability could result in unauthorized access to elevated privileges, allowing a user to perform actions or access resources that are normally restricted.

Remediation

Users can update to Dell SupportAssist OS Recovery version 5.5.14.0 or later. Instructions for verifying the current version and updating the application are available in the Dell Security Advisory DSA-2025-315.

Added: Aug 6, 2025, 8:25 PM

Updated: Aug 6, 2025, 8:25 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell SupportAssist OS Recovery Temporary File Vulnerability Leading to Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Dell SupportAssist OS Recovery

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating