Primary

Context

Dell Update Package DUP Framework Improper Permission Management Vulnerability Allowing Privilege Escalation

Vulnerability

Patched

A vulnerability has been identified in the Dell Update Package (DUP) Framework, specifically in versions 23.12.00 prior to 24.12.00. This vulnerability involves improper handling of permissions, allowing a low-privileged attacker with local access to potentially escalate privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation.

Remediation

Users are advised to update to Dell Update Package (DUP) Framework version 25.02.00 or later. Instructions for downloading the updated version are available on the Dell Support website.

Added: Feb 12, 2026, 3:25 AM

Updated: Feb 12, 2026, 3:25 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.8

remediation

7.7

relevance

3.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.8

remediation

7.7

relevance

3.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell Update Package DUP Framework Improper Permission Management Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Dell Update Package (DUP) Framework

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating