PT-2026-35971 · Dell · Purchased Apps
Michele Spagnuolo
·
Published
2026-04-29
·
Updated
2026-05-05
·
CVE-2026-27105
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Dell/Alienware Purchased Apps versions prior to 1.1.31.0
Description
An improper link resolution before file access, also known as link following, allows a low privileged attacker with local access to perform an arbitrary file write. Link following occurs when a program follows a symbolic link to a file or directory without verifying if the link points to an intended location.
Recommendations
Update to version 1.1.31.0 or later.
Fix
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Purchased Apps