Vulnerability Details CVE-2022-34458
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in download operation component. A local malicious user could potentially exploit this vulnerability leading to the disclosure of confidential data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.0%
CVSS Severity
CVSS v3 Score 6.6
References
Products affected by CVE-2022-34458
-
cpe:2.3:a:dell:alienware_update:-
-
cpe:2.3:a:dell:alienware_update:4.4.0
-
cpe:2.3:a:dell:alienware_update:4.5.0
-
cpe:2.3:a:dell:alienware_update:4.6.0
-
cpe:2.3:a:dell:command_update:-
-
cpe:2.3:a:dell:command_update:3.1
-
cpe:2.3:a:dell:command_update:4.4.0
-
cpe:2.3:a:dell:command_update:4.5.0
-
cpe:2.3:a:dell:command_update:4.6.0
-
cpe:2.3:a:dell:update:-
-
cpe:2.3:a:dell:update:4.4.0
-
cpe:2.3:a:dell:update:4.5.0