Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.8
Dell Command | Intel vPro Out of Band versions prior to 4.7.0: Privilege Escalation Risk
CVE-2026-24502
Summary
Older versions of Dell Command | Intel vPro Out of Band software have a security weakness that could allow an attacker with limited access to gain more power on a computer. If not updated, this could lead to unauthorized access and control. Update to version 4.7.0 or later to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| dell | command_\|_intel_vpro_out_of_band | <= 4.7.0 | – |
Original title
Dell Command | Intel vPro Out of Band, versions prior to 4.7.0, contain an Uncontrolled Search Path Element vulnerability. A low privileged attacker with local access could potentially exploit this...
Original description
Dell Command | Intel vPro Out of Band, versions prior to 4.7.0, contain an Uncontrolled Search Path Element vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.
nvd CVSS3.1
7.8
Vulnerability type
CWE-427
Uncontrolled Search Path Element
- https://www.dell.com/support/kbdoc/en-us/000429179/dsa-2026-106 Vendor Advisory
Published: 3 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026