Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Create and access a list of your products
Sign In Create an Account Premier Sign In Partner Program Sign In
Contact Us

DSA-2022-308: Dell Display Manager 1.5 Security Update for a Permissions Vulnerability

Summary: Dell Display Manager 1.5 remediation is available for Permissions vulnerability that may be exploited by malicious users to compromise the affected systems.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

High

Details

Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2022-34464 Dell Display Manager contains a Permissions vulnerability. A local low privilege user could potentially exploit this vulnerability by bypassing default access controls to elevate privileges on the system. 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2022-34464 Dell Display Manager contains a Permissions vulnerability. A local low privilege user could potentially exploit this vulnerability by bypassing default access controls to elevate privileges on the system. 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product Affected Versions Updated Versions Link to Update
Dell Display Manager Versions before 1.56.2110 1.56.2110, A00-00 https://www.dell.com/support/home/drivers/driversdetails?driverid=m33cg
Product Affected Versions Updated Versions Link to Update
Dell Display Manager Versions before 1.56.2110 1.56.2110, A00-00 https://www.dell.com/support/home/drivers/driversdetails?driverid=m33cg

Revision History

RevisionDateDescription
1.02022-12-20Initial Release

Acknowledgements

CVE-2022-34464: Dell Technologies would like to thank Pwni for reporting this issue.

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

Alienware 25 Gaming Monitor AW2518Hf, Electronics & Accessories, Monitors & Accessories, Dell C5517H, Dell C5518QT, Dell C7016H, Dell C7017T, Dell C8618QT, Dell E1713S, Dell E1913S, Dell E1914H, Dell E1916H, Dell E1916HL, Dell E1916HM, Dell E2013H , Dell E2014H, Dell E2014T, Dell E2015Hv, Dell E2016, Dell E2016H, Dell E2016HL, Dell E2016HM, Dell E2213H, Dell E2214H, Dell E2214Hv, Dell E2215HV, Dell E2216H, Dell E2216HV, Dell E2218HN, Dell E2313H, Dell E2314H, Dell E2318H, Dell E2318HN, Dell E2416H, Dell E2417H, Dell E5515H, Dell MR2217, Dell MR2416, Dell P1913s, Dell P1914S, Dell P2014H, Dell P2016, Dell P2213, Dell P2214H, Dell P2217, Dell P2217H, Dell P2314H, Dell P2317H, Dell P2317HWh, Dell P2414H, Dell P2415Q, Dell P2416D, Dell P2418D, Dell P2418HZ, Dell P2714T, Dell P2715Q, Dell 24 Monitor: SE2417HG, Product Security Information ...
Article Properties
Article Number: 000206359
Article Type: Dell Security Advisory
Last Modified: 20 Dec 2022
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.