Lucene search
K
DellDigital Delivery

8 matches found

CVE
CVE
added 2019/08/09 7:13 p.m.120 views

CVE-2019-3744

Dell/Alienware Digital Delivery (DLL/Alienware Digital Delivery) prior to version 4.0.41 is affected by a local privilege-escalation vulnerability. A non-privileged attacker can exploit a race condition and a path-traversal in the install software package feature of a Universal Windows Platform a...

7.8CVSS7.6AI score0.00354EPSS
CVE
CVE
added 2019/08/09 7:12 p.m.115 views

CVE-2019-3742

Dell/Alienware Digital Delivery (and Dell Digital Delivery) versions prior to 3.5.2013 are affected by a local privilege-escalation vulnerability. A non-privileged attacker could abuse a named pipe that deserializes binaries via a process hollowing technique to execute code with elevated privileg...

7.8CVSS7.7AI score0.00381EPSS
CVE
CVE
added 2020/03/09 7:45 p.m.68 views

CVE-2020-5342

Dell Digital Delivery prior to version 3.5.2015 contains an incorrect default permissions vulnerability. A locally authenticated, low-privileged user could exploit this to run an arbitrary executable with administrative privileges on the affected system. Affected products/versions are stated in t...

7.8CVSS7.4AI score0.0044EPSS
CVE
CVE
added 2024/03/04 1:0 p.m.59 views

CVE-2024-0155

Dell Digital Delivery before version 5.2.0.0 contains a Use After Free vulnerability rooted in memory management, exploitable by a local, low-privilege attacker to crash the application or execute arbitrary code. Affected software is Dell Digital Delivery ( Dell ). Remediation: upgrade to 5.2.0.0...

7.8CVSS6.8AI score0.00202EPSS
CVE
CVE
added 2023/09/08 5:4 a.m.54 views

CVE-2023-32470

Dell Digital Delivery is affected by an Insecure Operation on Windows Junction / Mount Point vulnerability in versions prior to 5.0.82.0. A local attacker could create arbitrary folders, potentially causing permanent Denial of Service (DOS). Affected product/version: Dell Digital Delivery before ...

5.5CVSS5.5AI score0.00154EPSS
CVE
CVE
added 2018/10/02 1:0 p.m.53 views

CVE-2018-11072

Dell Digital Delivery prior to version 3.5.1 is affected by a DLL injection vulnerability that can enable a local authenticated attacker, with knowledge of the application workflow, to load and execute a malicious DLL with administrator privileges. The issue stems from how the vulnerable DLL is l...

7.8CVSS7.6AI score0.00411EPSS
CVE
CVE
added 2024/03/04 12:54 p.m.52 views

CVE-2024-0156

Dell Digital Delivery is affected in versions prior to 5.2.0.0 by a buffer overflow caused by improper input length/size validation. A local, low-privilege attacker could potentially achieve arbitrary code execution and privilege escalation . The vulnerability is documented with a fix to upgrade ...

7.8CVSS7.1AI score0.00205EPSS
CVE
CVE
added 2025/08/04 3:53 p.m.26 views

CVE-2025-38739

Dell Digital Delivery, before version 5.6.1.0, contains an Insufficiently Protected Credentials vulnerability that can allow a remote, unauthenticated attacker to cause Information Disclosure. The flaw affects Dell Digital Delivery software and stems from inadequate credential protection as descr...

7.2CVSS6.7AI score0.00384EPSS