Vulnerabilities > Dell > Update Package Framework
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-07 | CVE-2025-22395 | Unspecified vulnerability in Dell Update Package Framework 19.1.0.413/3.8.3.67/4.9.4.36 Dell Update Package Framework, versions prior to 22.01.02, contain(s) a Local Privilege Escalation Vulnerability. | 7.8 |
| 2024-03-01 | CVE-2023-39254 | Unspecified vulnerability in Dell Update Package Framework 3.8.3.67/4.9.4.36 Dell Update Package (DUP), Versions prior to 4.9.10 contain an Uncontrolled Search Path vulnerability. | 7.3 |
| 2024-02-06 | CVE-2023-32454 | Link Following vulnerability in Dell Update Package Framework 3.8.3.67/4.9.4.36 DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. | 7.1 |
| 2019-09-24 | CVE-2019-3726 | Uncontrolled Search Path Element vulnerability in Dell Update Package Framework 19.1.0.413/3.8.3.67/4.9.4.36 An Uncontrolled Search Path Vulnerability is applicable to the following: Dell Update Package (DUP) Framework file versions prior to 19.1.0.413, and Framework file versions prior to 103.4.6.69 used in Dell EMC Servers. | 6.7 |