CNNVD-202602-2157 Information

CNNVD ID

CNNVD-202602-2157

Related CVE

CVE-2026-23857

• CNNVD Published: 2026-02-12

Description (Chinese)

Dell Update Package Framework是美国戴尔（Dell）公司的一款用于更新系统组件的框架。该产品主要提供驱动程序、应用程序、BIOS和固件的安装程序。 Dell Update Package Framework 23.12.00至24.12.00版本存在安全漏洞，该漏洞源于权限处理不当，可能导致权限提升。

Description (English)

Dell Update Package Framework is a framework for updating the system components of Dell Corporation. The product mainly provides the installation of drivers, applications, BIOS and solids. There is a security loophole in Dell Update Package Platform 23.12.00 to 24.12.00, which stems from the mishandling of authority, which may lead to an increase in authority.

Vulnerability Type

其他

Affected Vendor

戴尔

Published

2026-02-12

Last Modified

2026-02-24

References

https://www.dell.com/support/kbdoc/en-us/000426781/dsa-2026-081-security-update-for-dell-update-package-dup-framework-vulnerability

Patch

https://www.dell.com/support/kbdoc/en-us/000426781/dsa-2026-081-security-update-for-dell-update-package-dup-framework-vulnerability