Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dell update vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-28971
Dell Update Manager Plugin, versions 1.4.0 up to and including 1.5.0, contains a Plain-text Password Storage Vulnerability in Log file. A remote high privileged attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attac...
NA
CVE-2023-39254
Dell Update Package (DUP), Versions before 4.9.10 contain an Uncontrolled Search Path vulnerability. A malicious user with local access to the system could potentially exploit this vulnerability to run arbitrary code as admin.
NA
CVE-2024-22457
Dell Secure Connect Gateway 5.20 contains an improper authentication vulnerability during the SRS to SCG update path. A remote low privileged attacker could potentially exploit this vulnerability, leading to impersonation of the server through presenting a fake self-signed certif...
7.1
CVSSv3
CVE-2023-32454
DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service
Dell Update Package Framework
7.3
CVSSv3
CVE-2023-28065
Dell Command | Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability leading to privilege escalation.
Dell Alienware Update
Dell Command Update
Dell Update
7.1
CVSSv3
CVE-2023-28071
Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permane...
Dell Alienware Update
Dell Alienware Update 4.9.0
Dell Command Update
Dell Command Update 4.9.0
Dell Update
Dell Update 4.9.0
7.8
CVSSv3
CVE-2023-28070
Alienware Command Center Application, versions 5.5.43.0 and prior, contain an improper access control vulnerability. A local malicious user could potentially exploit this vulnerability during installation or update process leading to privilege escalation.
Dell Alienware Command Center
7.8
CVSSv3
CVE-2022-34384
Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restor...
Dell Command Update
Dell Update
Dell Alienware Update
Dell Supportassist For Business Pcs
Dell Supportassist For Home Pcs
6
CVSSv3
CVE-2022-34404
Dell System Update, version 2.0.0 and previous versions, contains an Improper Certificate Validation in data parser module. A local attacker with high privileges could potentially exploit this vulnerability, leading to credential theft and/or denial of service.
Dell System Update
7.1
CVSSv3
CVE-2023-23698
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. A local malicious user may potentially exploit this vulnerability leading to arbitrary file delete.
Dell Alienware Update 4.6.0
Dell Alienware Update 4.7.1
Dell Command Update 4.6.0
Dell Command Update 4.7.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »