Improper Input Validation in Dell Alienware Command Center
CVE-2023-24569

7.8HIGH

Key Information:

Vendor: Dell
Status: Alienware Command Center (awcc)
Vendor: CVE Published:; 10 February 2023

What is CVE-2023-24569?

Dell Alienware Command Center, specifically versions 5.5.37.0 and earlier, contains a vulnerability characterized by improper input validation. This flaw enables a local authenticated user to send crafted input to a named pipe, potentially leading to a privilege escalation on the affected systems. Users and administrators are urged to apply recommended updates and follow best practices to mitigate the risk associated with this vulnerability.

Affected Version(s)

Alienware Command Center (AWCC) 0 < 5.5.37.0

References

https://www.dell.com/support/kbdoc/en-us/000208327/dsa-20...

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 10, 2023
Vulnerability Reserved
Jan 26, 2023