DSA-2022-217: Dell Command | Update and Dell Update/Alienware Update Security Update for a Local Privilege Escalation Vulnerability
Résumé: Dell Command | Update and Dell Update/Alienware Update remediation is available for a Local Privilege Escalation Vulnerability that may be exploited by malicious users to compromise the affected system. ...
Cet article concerne
Cet article ne concerne pas
Cet article n’est associé à aucun produit spécifique.
Toutes les versions du produit ne sont pas identifiées dans cet article.
Impact
High
Détails
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-34382 | Dell Command | Update and Dell Update/Alienware Update versions before 4.6.0 contains a Local Privilege Escalation Vulnerability in the custom catalog configuration. A local malicious user may potentially exploit this vulnerability in order to elevate their privileges. | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-34382 | Dell Command | Update and Dell Update/Alienware Update versions before 4.6.0 contains a Local Privilege Escalation Vulnerability in the custom catalog configuration. A local malicious user may potentially exploit this vulnerability in order to elevate their privileges. | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Produits concernés et mesure corrective
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell Command | Update | Versions before 4.6.0 | 4.6.0 | Universal Windows Platform version for Windows 10 32 and 64 bit Dell Command | Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Command | Update Application | Driver Details | Dell US |
| Dell Update/Alienware Update | Versions before 4.6.0 | 4.6.0 | Universal Windows Platform version for Windows 10 32 and 64 bit Dell Update/Alienware Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Update/Alienware Update Application | Driver Details | Dell US |
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell Command | Update | Versions before 4.6.0 | 4.6.0 | Universal Windows Platform version for Windows 10 32 and 64 bit Dell Command | Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Command | Update Application | Driver Details | Dell US |
| Dell Update/Alienware Update | Versions before 4.6.0 | 4.6.0 | Universal Windows Platform version for Windows 10 32 and 64 bit Dell Update/Alienware Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Update/Alienware Update Application | Driver Details | Dell US |
Historique des révisions
| Revision | Date | Description |
| 1.0 | 2022-08-08 | Initial Release |
| 1.1 | 2022-09-22 | Updated Link to Update |
Remerciements
Dell would like to thank Alexander Pudwill for reporting this issue.
Informations connexes
Mention légale
Produits concernés
Alienware Update, Dell Command | Update, Product Security InformationPropriétés de l’article
Numéro d’article: 000202198
Type d’article: Dell Security Advisory
Dernière modification: 08 juin 2023
Trouvez des réponses à vos questions auprès d’autres utilisateurs Dell
Services de support
Vérifiez si votre appareil est couvert par les services de support.