Dell Command | Update, Dell Update, and Alienware Update...
High severity
Unreviewed
Published
Feb 1, 2023
to the GitHub Advisory Database
•
Updated Feb 16, 2023
Description
Published by the National Vulnerability Database
Feb 1, 2023
Published to the GitHub Advisory Database
Feb 1, 2023
Last updated
Feb 16, 2023
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature in get applicable driver component. A local malicious user could potentially exploit this vulnerability leading to malicious payload execution.
References