vulnerability
Dell Command Update: CVE-2021-36277: DSA-2021-154: Dell Command | Update, Dell Update, Alienware Update, and Alienware Command Center Application Security Update for Improper Verification of Cryptographic Signature Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Aug 11, 2022 | Nov 28, 2025 | Jan 29, 2026 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Aug 11, 2022
Added
Nov 28, 2025
Modified
Jan 29, 2026
Description
Dell Command | Update, Dell Update, and Alienware Update versions before 4.3 and Alienware Command Center Application versions before 5.4.35.0 contain an Improper Verification of Cryptographic Signature Vulnerability. A local authenticated malicious user may exploit this vulnerability by running arbitrary code on the system.
Solution
dell-command-update-upgrade-latest
References
- CWE-347
- CVE-2021-36277
- https://attackerkb.com/topics/CVE-2021-36277
- URL-https://www.dell.com/support/home/en-us/drivers/DriversDetails?driverId=GRVPK
- URL-https://www.dell.com/support/home/en-us/drivers/DriversDetails?driverId=8D5MC
- URL-https://www.dell.com/support/home/en-us/drivers/DriversDetails?driverId=J8D1D
- URL-https://www.dell.com/support/home/en-us/drivers/DriversDetails?driverId=0WKN0
- URL-https://www.dell.com/support/home/en-us?app=drivers
- URL-https://www.dell.com/support/kbdoc/en-in/000190110/dsa-2021-154-dell-command-update-dell-update-alienware-update-security-update-for-improper-verification-of-cryptographic-signature-vulnerability
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.