文章編號: 000140046


DSA-2019-084: Dell SupportAssist for Business PCs and Dell SupportAssist for Home PCs Security Update for PC Doctor Vulnerability

摘要: Security notice for the Dell SupportAssist for Business PCs and Dell SupportAssist for Home PCs Security Update for PC Doctor Vulnerability.

文章內容


影響

High

詳細資料

The PC Doctor component in Dell SupportAssist for Business Systems and Dell SupportAssist for Home PCs has been updated for the following vulnerability:

  • PC Doctor CVE-2019-12280

 

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

The PC Doctor component in Dell SupportAssist for Business Systems and Dell SupportAssist for Home PCs has been updated for the following vulnerability:

  • PC Doctor CVE-2019-12280

 

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

Dell Technologies 建議所有客戶不僅要參考 CVSS 基本分數,也要將可能會影響與特定安全漏洞相關之潛在嚴重性的所有相關暫時和環境分數納入考量。

受影響的產品與補救措施

Affected Products: 

Dell SupportAssist for Business PCs version 2.0

Dell SupportAssist for Home PCs version 3.2.1 and all prior versions
 

Remediation: 

The following Dell SupportAssist for Business Systems and Dell SupportAssist for Home PCs release contains a resolution to this vulnerability:

 

  • Dell SupportAssist for Business PCs version 2.0.1
  • Dell SupportAssist for Home PCs version 3.2.2

 

Dell recommends all customers update at the earliest opportunity.

 

Method 1: Auto Update

Dell SupportAssist for Business PCs and Dell SupportAssist for Home PCs automatically upgrade to the latest versions available, if automatic updates are enabled.

 

Method 2: Manual Update

To update manually, download and install the latest product version from:

 

Dell SupportAssist for Business PCs
https://downloads.dell.com/serviceability/Catalog/SupportAssistx64.msi
https://downloads.dell.com/serviceability/Catalog/SupportAssistx86.msi

 

Dell SupportAssist for Home PCs 
https://downloads.dell.com/serviceability/catalog/SupportAssistInstaller.exe

 

Please visit https://www.dell.com/support/home?app=drivers for updates on the applicable products.

 

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS and firmware updates automatically once available.

 

Affected Products: 

Dell SupportAssist for Business PCs version 2.0

Dell SupportAssist for Home PCs version 3.2.1 and all prior versions
 

Remediation: 

The following Dell SupportAssist for Business Systems and Dell SupportAssist for Home PCs release contains a resolution to this vulnerability:

 

  • Dell SupportAssist for Business PCs version 2.0.1
  • Dell SupportAssist for Home PCs version 3.2.2

 

Dell recommends all customers update at the earliest opportunity.

 

Method 1: Auto Update

Dell SupportAssist for Business PCs and Dell SupportAssist for Home PCs automatically upgrade to the latest versions available, if automatic updates are enabled.

 

Method 2: Manual Update

To update manually, download and install the latest product version from:

 

Dell SupportAssist for Business PCs
https://downloads.dell.com/serviceability/Catalog/SupportAssistx64.msi
https://downloads.dell.com/serviceability/Catalog/SupportAssistx86.msi

 

Dell SupportAssist for Home PCs 
https://downloads.dell.com/serviceability/catalog/SupportAssistInstaller.exe

 

Please visit https://www.dell.com/support/home?app=drivers for updates on the applicable products.

 

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS and firmware updates automatically once available.

 

感謝

Dell would like to thank Peleg Hadar for reporting this vulnerability.

相關資訊

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide


請務必閱讀並使用此 Dell Technologies 安全性公告中的資訊,以協助避免此處所述問題可能造成的情況。Dell Technologies 會發佈安全性公告,讓受影響產品的使用者留意重要的安全性資訊。Dell Technologies 是依據各種已安裝系統的平均風險來評估風險,不一定能代表本機安裝和個別環境的實際風險。建議所有使用者確定此資訊對其個別環境的適用性,並採取適當行動。此處列出的資訊「依現況」提供,不含任何形式的保固。Dell Technologies 明確表示不提供任何明示或暗示的擔保,包括適銷性、特定用途的適用性、所有權及非侵權的擔保。在任何情況下,對於因本文所含資訊或您決定據此採取行動所造成或與之相關的任何損害,Dell Technologies、其關係企業或供應商概不負責,包括直接、間接、附帶、衍生性、業務利潤損失或特殊損害,即使 Dell Technologies、其關係企業或供應商對上述損害的可能性已經知情亦然。部分州別不允許排除或限制衍生性或附帶損害的責任,因此上述限制應在法律允許的範圍內適用。

文章屬性


受影響的產品

SupportAssist for Home PCs, SupportAssist for Business PCs

上次發佈日期

21 2月 2021

版本

4

文章類型

Dell Security Advisory

為本文評分


準確
實用
簡單易懂
這篇文章對您有用嗎?

0/3000 個字元