Lucene search
+L

65 matches found

Positive Technologies
Positive Technologies
added 2023/06/23 12:0 a.m.7 views

PT-2023-21533 · Dell · Alienware Update +2

Name of the Vulnerable Software and Affected Versions: Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior Description: The issue is related to an Insecure Operation on Windows Junction / Mount Point, which could be exploited by a local malicious user to create...

7.1CVSS6.8AI score0.00179EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.9 views

Vulnerabilities of Dell Command | Update, Dell Update, and Alienware Update programs, which allow attackers to disclose protected information

The vulnerability of the Dell Command | Update, Dell Update, and Alienware Update programs involves exposing system data that is not authorized to be exposed in a controlled area. Exploiting this vulnerability can allow an intruder to expose protected information...

6.6CVSS5.9AI score0.0018EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.6 views

The vulnerability of the Dell Command | Update, Dell Update, and Alienware Update programs lies in their improper verification of the cryptographic signature, allowing a perpetrator to execute arbitrary code.

The vulnerability of the Dell Command | Update, Dell Update, and Alienware Update programs is related to improper verification of the cryptographic signature. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.6AI score0.0015EPSS
Exploits0References2Affected Software3
OSV
OSV
added 2023/02/11 1:23 a.m.6 views

CVE-2022-34384

Dell SupportAssist Client Consumer version 3.11.1 and prior, SupportAssist Client Commercial version 3.2 and prior, Dell Command | Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. A local...

7.8CVSS5.8AI score0.00232EPSS
Exploits0References1
NVD
NVD
added 2023/02/10 1:15 p.m.27 views

CVE-2023-23698

Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. A local malicious user may potentially exploit this vulnerability leading to arbitrary file delete...

7.1CVSS6.1AI score0.00176EPSS
Exploits0References1
OSV
OSV
added 2023/02/10 1:15 p.m.6 views

CVE-2023-23698

Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. A local malicious user may potentially exploit this vulnerability leading to arbitrary file delete...

7.1CVSS7.2AI score0.00176EPSS
Exploits0References1
Prion
Prion
added 2023/02/10 1:15 p.m.15 views

Design/Logic Flaw

Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. A local malicious user may potentially exploit this vulnerability leading to arbitrary file delete...

3.2CVSS6.9AI score0.00176EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2023/02/10 12:20 p.m.25 views

CVE-2023-23698

Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. A local malicious user may potentially exploit this vulnerability leading to arbitrary file delete...

5.5CVSS7.1AI score0.00176EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/10 12:20 p.m.9 views

CVE-2023-23698

Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. A local malicious user may potentially exploit this vulnerability leading to arbitrary file delete...

5.5CVSS7.1AI score0.00176EPSS
Exploits0References1
CVE
CVE
added 2023/02/10 12:20 p.m.54 views

CVE-2023-23698

Dell Command | Update, Dell Update, and Alienware Update prior to 4.6.0 and 4.7.1 are affected. The installer component performs an insecure operation on Windows Junction, allowing a local attacker to delete arbitrary files without user interaction. Impact: high for availability/integrity; exploi...

7.1CVSS6.9AI score0.00176EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2023/02/10 12:0 a.m.7 views

多款Dell产品 安全漏洞

Dell Command Update is a Dell USA Inc. tool for automating driver, BIOS and firmware updates in Dell products. A security vulnerability exists in Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.6.0 and 4.7.1, which originates from the inclusion of an insecure action i...

7.1CVSS7.2AI score0.00176EPSS
Exploits0References2
NVD
NVD
added 2023/02/01 5:15 a.m.22 views

CVE-2022-34458

Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in download operation component. A local malicious user could potentially exploit this vulnerability leading to the...

6.6CVSS6.3AI score0.0018EPSS
Exploits0References1
OSV
OSV
added 2023/02/01 5:15 a.m.4 views

CVE-2022-34459

Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature in get applicable driver component. A local malicious user could potentially exploit this vulnerability leading to malicious payload execution...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References1
NVD
NVD
added 2023/02/01 5:15 a.m.23 views

CVE-2022-34459

Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature in get applicable driver component. A local malicious user could potentially exploit this vulnerability leading to malicious payload execution...

7.8CVSS7.5AI score0.0015EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/01 4:28 a.m.28 views

CVE-2022-34459

Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature in get applicable driver component. A local malicious user could potentially exploit this vulnerability leading to malicious payload execution...

7.8CVSS7.7AI score0.0015EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/02/01 12:0 a.m.5 views

多款Dell产品 安全漏洞

Dell Command Update and Dell Update and Alienware Update are both products of Dell, Inc.Dell Command Update is a tool used to automatically update drivers, BIOS, and firmware in Dell products.Dell Update and Alienware Update is an update application. A security vulnerability exists in Dell...

6.6CVSS5.7AI score0.0018EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/02/01 12:0 a.m.4 views

多款Dell产品 数据伪造问题漏洞

Dell Command Update and Dell Update and Alienware Update are both products of Dell, Inc.Dell Command Update is a tool used to automatically update drivers, BIOS, and firmware in Dell products.Dell Update and Alienware Update is an update application. A security vulnerability exists in Dell...

7.8CVSS7.4AI score0.0015EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/12/12 12:0 a.m.5 views

PT-2022-6357 · Dell · Alienware Update +2

Name of the Vulnerable Software and Affected Versions: Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 Description: The issue is related to an improper verification of cryptographic signature in the get applicable driver component. This could allow a local malicious...

7.8CVSS7.5AI score0.0015EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.6 views

PT-2022-6351 · Dell · Alienware Update +2

Name of the Vulnerable Software and Affected Versions: Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 Description: The issue is related to the exposure of sensitive system information to an unauthorized control sphere. A local malicious user could potentially explo...

6.6CVSS5.2AI score0.0018EPSS
Exploits0References5
OSV
OSV
added 2022/09/02 6:15 p.m.4 views

CVE-2022-34382

Dell Command Update, Dell Update and Alienware Update versions prior to 4.6.0 contains a Local Privilege Escalation Vulnerability in the custom catalog configuration. A local malicious user may potentially exploit this vulnerability in order to elevate their privileges...

7.8CVSS5.8AI score0.00185EPSS
Exploits0References1
Rows per page
Query Builder