Primary

Context

Dell SupportAssist for Home and Business PCs Symbolic Link Vulnerability Allowing Arbitrary File Deletion

Vulnerability

Patched

A symbolic link vulnerability has been identified in Dell SupportAssist for Home PCs, versions prior to 4.8.2.29006, and for Business PCs, versions prior to 4.5.3.25254. This vulnerability allows a low-privileged attacker with local access to the system to delete arbitrary files, but only on the affected system.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of files on the affected system.

Remediation

Users can update to Dell SupportAssist for Home PCs version 4.10.1 or later, or Dell SupportAssist for Business PCs version 4.9.0 or later.

Added: Oct 13, 2025, 3:17 PM

Updated: Oct 13, 2025, 3:17 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell SupportAssist for Home and Business PCs Symbolic Link Vulnerability Allowing Arbitrary File Deletion

Vulnerability

Impact

Remediation

Affected Products

Dell SupportAssist

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating