Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. A local malicious user may potentially exploit this vulnerability, leading to privilege escalation.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Alienware_update | Dell | * | 4.5.0 (excluding) |
Command_update | Dell | * | 4.5.0 (excluding) |
Supportassist_for_business_pcs | Dell | * | 3.2.0 (including) |
Supportassist_for_home_pcs | Dell | * | 3.11.2 (including) |
Update | Dell | * | 4.5.0 (excluding) |