DSA-2022-074: Dell Command | Update and Dell Update, and Alienware Update Security Update for a Local Privilege Escalation Vulnerability
Summary: Dell Command | Update and Dell Update, and Alienware Update remediation is available for a Local Privilege Escalation Vulnerability that may be exploited by malicious users to compromise the affected system. ...
Acest articol se aplică pentru
Acest articol nu se aplică pentru
Acest articol nu este legat de un produs specific.
Acest articol nu acoperă toate versiunile de produs existente.
Impact
High
Details
| Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-24426 | Dell Command | Update, Dell Update, and Alienware Update version 4.4.0 contains a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. A local malicious user may potentially exploit this vulnerability, leading to privilege escalation. | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-24426 | Dell Command | Update, Dell Update, and Alienware Update version 4.4.0 contains a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. A local malicious user may potentially exploit this vulnerability, leading to privilege escalation. | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Produse afectate și măsuri de remediere
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell Command | Update |
4.4.0 |
4.5.0 |
Universal Windows Platform version for Windows 10, 32 and 64 bit Dell Command | Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Command | Update Application | Driver Details | Dell US |
| Dell Update and Alienware Update |
4.4.0 |
4.5.0 |
Universal Windows Platform version for Windows 10, 32 and 64 bit Dell Update/Alienware Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Update/Alienware Update Application | Driver Details | Dell US |
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell Command | Update |
4.4.0 |
4.5.0 |
Universal Windows Platform version for Windows 10, 32 and 64 bit Dell Command | Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Command | Update Application | Driver Details | Dell US |
| Dell Update and Alienware Update |
4.4.0 |
4.5.0 |
Universal Windows Platform version for Windows 10, 32 and 64 bit Dell Update/Alienware Update Application for Windows 10 | Driver Details | Dell US Windows 32 and 64-bit version for Microsoft Windows 7, 8, 8.1, and 10 Dell Update/Alienware Update Application | Driver Details | Dell US |
Revision History
| Revision | Date | Description |
| 1.0 | 2022-03-25 | Initial Release |
| 1.1 | 2022-05-20 | CVE Description correction: only version 4.4.0 is affected |
Acknowledgements
Dell would like to thank Alexander Pudwill for reporting this issue.
Related Information
Exonerare de răspundere
Produse afectate
Alienware Update, Dell Command | Update, Dell Update, Product Security InformationProprietăți articol
Article Number: 000197723
Article Type: Dell Security Advisory
Ultima modificare: 18 Sep 2025
Găsiți răspunsuri la întrebările dvs. de la alți utilizatori Dell
Servicii de asistență
Verificați dacă dispozitivul dvs. este acoperit de serviciile de asistență.