Digital Delivery Dell Digital Delivery

Do you want an email whenever new security vulnerabilities are reported in Dell Digital Delivery?

By the Year

In 2024 there have been 0 vulnerabilities in Dell Digital Delivery . Last year Digital Delivery had 1 security vulnerability published. Right now, Digital Delivery is on track to have less security vulnerabilities in 2024 than it did last year.

Year Vulnerabilities Average Score
2024 0 0.00
2023 1 5.50
2022 0 0.00
2021 0 0.00
2020 1 7.80
2019 2 7.80
2018 1 7.80

It may take a day or so for new Digital Delivery vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Dell Digital Delivery Security Vulnerabilities

Dell Digital Delivery versions prior to 5.0.82.0 contain an Insecure Operation on Windows Junction / Mount Point vulnerability

CVE-2023-32470 5.5 - Medium - September 08, 2023

Dell Digital Delivery versions prior to 5.0.82.0 contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Service (DOS).

1386

Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect default permissions vulnerability

CVE-2020-5342 7.8 - High - March 09, 2020

Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect default permissions vulnerability. A locally authenticated low-privileged malicious user could exploit this vulnerability to run an arbitrary executable with administrative privileges on the affected system.

Incorrect Default Permissions

Dell/Alienware Digital Delivery versions prior to 3.5.2013 contain a privilege escalation vulnerability

CVE-2019-3742 7.8 - High - August 09, 2019

Dell/Alienware Digital Delivery versions prior to 3.5.2013 contain a privilege escalation vulnerability. A local non-privileged malicious user could exploit a named pipe that performs binary deserialization via a process hollowing technique to inject malicous code to run an executable with elevated privileges.

Dell/Alienware Digital Delivery versions prior to 4.0.41 contain a privilege escalation vulnerability

CVE-2019-3744 7.8 - High - August 09, 2019

Dell/Alienware Digital Delivery versions prior to 4.0.41 contain a privilege escalation vulnerability. A local non-privileged malicious user could exploit a Universal Windows Platform application by manipulating the install software package feature with a race condition and a path traversal exploit in order to run a malicious executable with elevated privileges.

Directory traversal

Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability

CVE-2018-11072 7.8 - High - October 02, 2018

Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability. A local authenticated malicious user with advance knowledge of the application workflow could potentially load and execute a malicious DLL with administrator privileges.

DLL preloading

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Dell Digital Delivery or by Dell? Click the Watch button to subscribe.

Dell
Vendor

subscribe