CVE-2022-24426

HIGH

Dell Command | Update <4.4.0 - Privilege Escalation

Title source: llm

Description

Dell Command | Update, Dell Update, and Alienware Update version 4.4.0 contains a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. A local malicious user could potentially exploit this vulnerability, leading to privilege escalation.

References (1)

[Patch, Vendor Advisory] https://www.dell.com/support/kbdoc/en-us/000197723/dsa-2022-074

Scores

CVSS v3 7.8

EPSS 0.0004

EPSS Percentile 11.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-427

Status published

Affected Products (3)

dell/alienware_update

dell/command_update

dell/update

Timeline

Published Apr 01, 2022

Tracked Since Feb 18, 2026