CVE-2022-34459

Name of the Vulnerable Software and Affected Versions Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7

Description The issue is related to an improper verification of cryptographic signature in the get applicable driver component. This could allow a local malicious user to potentially exploit the vulnerability, leading to malicious payload execution.

Recommendations For versions prior to 4.7, update to version 4.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the get applicable driver component until a patch is available.