Information Disclosure Vulnerability in Dell ImageAssist Prior to 8.7.15

Information Disclosure Vulnerability in Dell ImageAssist Prior to 8.7.15

CVE-2019-3767 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Dell ImageAssist versions prior to 8.7.15 contain an information disclosure vulnerability. Dell ImageAssist stores some sensitive encrypted information in the images it creates. A privileged user of a system running an operating system that was deployed with Dell ImageAssist could potentially retrieve this sensitive information to then compromise the system and related systems.

Learn more about our User Device Pen Test.