Vulnerabilities > CVE-2022-34382 - Unspecified vulnerability in Dell Alienware Update, Command Update and Update

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

dell

NVD

Published: 2022-09-02

Updated: 2023-08-08

Summary

Dell Command Update, Dell Update and Alienware Update versions prior to 4.6.0 contains a Local Privilege Escalation Vulnerability in the custom catalog configuration. A local malicious user may potentially exploit this vulnerability in order to elevate their privileges.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell Command Update - Dell Command Update 3.1 Dell Command Update 4.4.0 Dell Command Update 4.5.0 Dell Alienware Update - Dell Alienware Update 4.4.0 Dell Alienware Update 4.5.0 Dell Update - Dell Update 4.4.0 Dell Update 4.5.0	10

References

https://www.dell.com/support/kbdoc/000202198