A critical security vulnerability has been identified in Dell’s SupportAssist for Home PCs, specifically affecting the installer executable version 4.0.3.
This flaw, tracked as CVE-2024-38305, allows local low-privileged authenticated attackers to escalate their privileges, potentially leading to the execution of arbitrary executables with elevated permissions on the operating system.
https://cybersecuritynews.com/dell-supp ... erability/