Vulnerability Details CVE-2019-3742
Dell/Alienware Digital Delivery versions prior to 3.5.2013 contain a privilege escalation vulnerability. A local non-privileged malicious user could exploit a named pipe that performs binary deserialization via a process hollowing technique to inject malicous code to run an executable with elevated privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.7%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
Products affected by CVE-2019-3742
-
cpe:2.3:a:dell:digital_delivery:3.5.1
-
cpe:2.3:a:dell:digital_delivery:3.5.2
-
cpe:2.3:a:dell:digital_delivery:3.5.2006
-
cpe:2.3:a:dell:digital_delivery:4.0.15.0