DSA-2023-158: Security Update for a Dell Alienware Command Center Vulnerability

详细文章

影响

详情

受影响的产品和补救措施

修订历史记录

确认

摘要: Dell Alienware Command Center remediation is available for a deserialization of untrusted data vulnerability that could be exploited by malicious users to compromise the affected system. ...

本文适用于本文不适用于本文并非针对某种特定的产品。本文并非包含所有产品版本。

查看其他资源

影响

High

详情

Proprietary Code CVEs	Description	CVSS Base Score	CVSS Vector String
CVE-2023-28072	Dell Alienware Command Center, versions prior to 5.5.51.0, contain a deserialization of untrusted data vulnerability. A local malicious user could potentially send specially crafted requests to the .NET Remoting server to run arbitrary code on the system.	7.8	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H See NVD (https://nvd.nist.gov/) for additional details.

Proprietary Code CVEs	Description	CVSS Base Score	CVSS Vector String
CVE-2023-28072	Dell Alienware Command Center, versions prior to 5.5.51.0, contain a deserialization of untrusted data vulnerability. A local malicious user could potentially send specially crafted requests to the .NET Remoting server to run arbitrary code on the system.	7.8	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H See NVD (https://nvd.nist.gov/) for additional details.

Dell Technologies 建议所有客户考虑 CVSS 基本分数以及任何相关的时间和环境分数，这可能会影响与特定安全漏洞相关的潜在严重程度。

受影响的产品和补救措施

Product	Software/Firmware	Affected Versions	Remediated Versions	Link
Alienware Command Center (AWCC)	Software	Versions prior to 5.5.51.0	Version 5.5.51.0 or later	Alienware Command Center for Windows 11 and Windows 10 64-bit Alienware Command Center Application

Product	Software/Firmware	Affected Versions	Remediated Versions	Link
Alienware Command Center (AWCC)	Software	Versions prior to 5.5.51.0	Version 5.5.51.0 or later	Alienware Command Center for Windows 11 and Windows 10 64-bit Alienware Command Center Application

修订历史记录

Revision	Date	Description
1.0	2023-08-30	Initial Release
2.0	2023-08-30	Corrected CVSS score link
3.0	2023-09-01	Corrected Acknowledgements section

确认

Dell Technologies would like to thank Matt Hand for reporting this issue.

法律免责声明

受影响的产品

Alienware Command Center

文章编号: 000212982

文章类型: Dell Security Advisory

上次修改时间: 01 9月 2023

DSA-2023-158: Security Update for a Dell Alienware Command Center Vulnerability

摘要: Dell Alienware Command Center remediation is available for a deserialization of untrusted data vulnerability that could be exploited by malicious users to compromise the affected system. ...

影响

详情

受影响的产品和补救措施

修订历史记录

确认

相关信息

法律免责声明

受影响的产品

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

欢迎

欢迎访问戴尔

DSA-2023-158: Security Update for a Dell Alienware Command Center Vulnerability

摘要: Dell Alienware Command Center remediation is available for a deserialization of untrusted data vulnerability that could be exploited by malicious users to compromise the affected system. ... 扩大查看范围 缩小查看范围

详细文章

影响

详情

受影响的产品和补救措施

修订历史记录

确认

相关信息

法律免责声明

受影响的产品

影响

详情

受影响的产品和补救措施

修订历史记录

确认

相关信息

法律免责声明

受影响的产品

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

文章属性

从其他戴尔用户那里查找问题的答案

支持服务

摘要: Dell Alienware Command Center remediation is available for a deserialization of untrusted data vulnerability that could be exploited by malicious users to compromise the affected system. ...