CVE-2024-28962

EUVD-2024-26024
Dell Command | Update, Dell Update, and Alienware Update UWP, versions prior to 5.4, contain an Exposed Dangerous Method or Function vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
Affected Products (NVD)
VendorProductVersion
dellalienware_update
𝑥
< 5.4
dellcommand_update
𝑥
< 5.4
dellupdate
𝑥
< 5.4
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
dellcommand_update
𝑥
< 5.4
ADP
dellupdate
𝑥
< 5.4
ADP
dellalienware_update
𝑥
< 5.4
ADP
Common Weakness Enumeration
References
https://www.dell.com/support/kbdoc/en-us/000227236/dsa-2024-169