7 matches found
CVE-2022-34459
CVE-2022-34459 concerns three Dell update products: Dell Command | Update, Dell Update, and Alienware Update, all versions prior to 4.7 . The flaw is an improper verification of cryptographic signatures in the function Get Applicable Driver Component, enabling a local attacker to potentially exec...
CVE-2022-34382
Dell CVE-2022-34382 affects Dell Command Update, Dell Update and Alienware Update up to version 4.6.0. The flaw is a Local Privilege Escalation in the custom catalog configuration that could allow a local attacker to elevate privileges. Public sources corroborate the affected software and state t...
CVE-2022-34384
Dell SupportAssist Client (Consumer 3.11.1 and earlier) and SupportAssist Client Commercial (3.2 and earlier), Dell Command | Update, Dell Update, and Alienware Update (before 4.5) contain a Local Privilege Escalation vulnerability in the Advanced Driver Restore component. A local attacker could ...
CVE-2022-34458
The CVE-2022-34458 entry covers Dell Command | Update, Dell Update, and Alienware Update (
CVE-2023-28065
Dell Command | Update, Dell Update, and Alienware Update (Windows) have versions 4.8.0 and earlier affected by an Insecure Operation on Windows Junction / Mount Point vulnerability. The root cause is an insecure operation involving Windows junctions/mount points, allowing a local attacker to esca...
CVE-2024-28962
Dell Command | Update, Dell Update, and Alienware Update UWP are affected by an Exposed Dangerous Method or Function vulnerability in versions prior to 5.4, enabling unauthenticated remote DoS. The issue is documented across CVE-2024-28962/NVD and ancillary sources with no exploit details provide...
CVE-2023-28071
Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point that could allow a local attacker to create arbitrary folders, leading to permanent Denial of Service. Exploitation is described as local, with no...