Digital Delivery Dell Digital Delivery

Do you want an email whenever new security vulnerabilities are reported in Dell Digital Delivery?

By the Year

In 2022 there have been 0 vulnerabilities in Dell Digital Delivery . Digital Delivery did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2022 0 0.00
2021 0 0.00
2020 1 7.80
2019 2 7.80
2018 1 7.80

It may take a day or so for new Digital Delivery vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Dell Digital Delivery Security Vulnerabilities

Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect default permissions vulnerability

CVE-2020-5342 7.8 - High - March 09, 2020

Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect default permissions vulnerability. A locally authenticated low-privileged malicious user could exploit this vulnerability to run an arbitrary executable with administrative privileges on the affected system.

Incorrect Default Permissions

Dell/Alienware Digital Delivery versions prior to 3.5.2013 contain a privilege escalation vulnerability

CVE-2019-3742 7.8 - High - August 09, 2019

Dell/Alienware Digital Delivery versions prior to 3.5.2013 contain a privilege escalation vulnerability. A local non-privileged malicious user could exploit a named pipe that performs binary deserialization via a process hollowing technique to inject malicous code to run an executable with elevated privileges.

Dell/Alienware Digital Delivery versions prior to 4.0.41 contain a privilege escalation vulnerability

CVE-2019-3744 7.8 - High - August 09, 2019

Dell/Alienware Digital Delivery versions prior to 4.0.41 contain a privilege escalation vulnerability. A local non-privileged malicious user could exploit a Universal Windows Platform application by manipulating the install software package feature with a race condition and a path traversal exploit in order to run a malicious executable with elevated privileges.

Race Condition

Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability

CVE-2018-11072 7.8 - High - October 02, 2018

Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability. A local authenticated malicious user with advance knowledge of the application workflow could potentially load and execute a malicious DLL with administrator privileges.

DLL preloading

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Dell Digital Delivery or by Dell? Click the Watch button to subscribe.

Dell
Vendor

subscribe