DSA-2022-217: Dell Command | Update and Dell Update/Alienware Update Security Update for a Local Privilege Escalation Vulnerability
요약: Dell Command | Update and Dell Update/Alienware Update remediation is available for a Local Privilege Escalation Vulnerability that may be exploited by malicious users to compromise the affected system. ...
이 문서는 다음에 적용됩니다.
이 문서는 다음에 적용되지 않습니다.
이 문서는 특정 제품과 관련이 없습니다.
모든 제품 버전이 이 문서에 나와 있는 것은 아닙니다.
영향
High
세부 정보
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-34382 | Dell Command | Update and Dell Update/Alienware Update versions before 4.6.0 contains a Local Privilege Escalation Vulnerability in the custom catalog configuration. A local malicious user may potentially exploit this vulnerability in order to elevate their privileges. | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-34382 | Dell Command | Update and Dell Update/Alienware Update versions before 4.6.0 contains a Local Privilege Escalation Vulnerability in the custom catalog configuration. A local malicious user may potentially exploit this vulnerability in order to elevate their privileges. | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
영향을 받는 제품 및 문제 해결
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell Command | Update | Versions before 4.6.0 | 4.6.0 | Universal Windows Platform version for Windows 10 32 and 64 bit Dell Command | Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Command | Update Application | Driver Details | Dell US |
| Dell Update/Alienware Update | Versions before 4.6.0 | 4.6.0 | Universal Windows Platform version for Windows 10 32 and 64 bit Dell Update/Alienware Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Update/Alienware Update Application | Driver Details | Dell US |
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell Command | Update | Versions before 4.6.0 | 4.6.0 | Universal Windows Platform version for Windows 10 32 and 64 bit Dell Command | Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Command | Update Application | Driver Details | Dell US |
| Dell Update/Alienware Update | Versions before 4.6.0 | 4.6.0 | Universal Windows Platform version for Windows 10 32 and 64 bit Dell Update/Alienware Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Update/Alienware Update Application | Driver Details | Dell US |
개정 내역
| Revision | Date | Description |
| 1.0 | 2022-08-08 | Initial Release |
| 1.1 | 2022-09-22 | Updated Link to Update |
감사의 말
Dell would like to thank Alexander Pudwill for reporting this issue.
관련 정보
법적 고지 사항
해당 제품
Alienware Update, Dell Command | Update, Product Security Information문서 속성
문서 번호: 000202198
문서 유형: Dell Security Advisory
마지막 수정 시간: 08 6월 2023
다른 Dell 사용자에게 질문에 대한 답변 찾기
지원 서비스
디바이스에 지원 서비스가 적용되는지 확인하십시오.