CVE-2022-34459

Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature in get applicable driver component. A local malicious user could potentially exploit this vulnerability leading to malicious payload execution.
References
Configurations

Configuration 1

cpe:2.3:a:dell:command_update:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:alienware_update:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:update:*:*:*:*:*:*:*:*

Information

Published : 2023-02-01 05:15

Updated : 2023-02-08 03:52


NVD link : CVE-2022-34459

Mitre link : CVE-2022-34459

Products Affected
No products.
CWE
CWE-347

Improper Verification of Cryptographic Signature