Vulnerability Details CVE-2022-34404
Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. A local attacker with high privileges could potentially exploit this vulnerability, leading to credential theft and/or denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.5%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2022-34404
-
cpe:2.3:a:dell:system_update:1.9
-
cpe:2.3:a:dell:system_update:1.9.1