Vulnerability Details CVE-2022-34459
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature in get applicable driver component. A local malicious user could potentially exploit this vulnerability leading to malicious payload execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.1%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2022-34459
-
cpe:2.3:a:dell:alienware_update:-
-
cpe:2.3:a:dell:alienware_update:4.4.0
-
cpe:2.3:a:dell:alienware_update:4.5.0
-
cpe:2.3:a:dell:alienware_update:4.6.0
-
cpe:2.3:a:dell:command_update:-
-
cpe:2.3:a:dell:command_update:3.1
-
cpe:2.3:a:dell:command_update:4.4.0
-
cpe:2.3:a:dell:command_update:4.5.0
-
cpe:2.3:a:dell:command_update:4.6.0
-
cpe:2.3:a:dell:update:-
-
cpe:2.3:a:dell:update:4.4.0
-
cpe:2.3:a:dell:update:4.5.0