CVE-2024-22447

CVSS 6.7 · Medium EPSS 0.10% · P1 Updated Jun 17, 2026

Possible ATT&CK Techniques 1AI

T1574.007 · Path Interception by PATH Environment Variable

Affected Version Matrix 1

Vendor	Product	Version Range	Status
Dell	Peripheral Manager	`< 1.7.3 or later`	affected

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-22447

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Dell Peripheral Manager, versions prior to 1.7.3, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious dll., leading to arbitrary code execution.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

对搜索路径元素未加控制

Source: NVD (National Vulnerability Database)

Vulnerability Title

Dell Peripheral Manager 权限许可和访问控制问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Dell peripheral manager是美国Dell公司的一款外围设备管理软件。 Dell Peripheral Manager 1.7.3之前版本存在权限许可和访问控制问题漏洞，该漏洞源于不安全的搜索路径元素，可能导致攻击者通过预加载恶意DLL执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Dell	Peripheral Manager	0 ~ 1.7.3 or later	-

II. Public POCs for CVE-2024-22447

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2024-22447

请登录查看更多情报信息。

Vendor Advisories for CVE-2024-22447 (1)

🔗 DSA-2024-055: Security Update for Dell Peripheral Manager Uncontrolled Search Path Element Vulnerabilities | Dell US Read full article vendor-advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-22447

Same Patch Batch · Dell · 2026-06-16 · 6 CVEs total

CVE-2024-24909	8.8 HIGH	Dell OpenManage Integration with Microsoft Windows Admin Center 安全漏洞
CVE-2024-39575	7.4 HIGH	update_disk_psu_baseline.sh明文密码漏洞
CVE-2024-38487	7.0 HIGH	API网关：容器提权致逃逸
CVE-2024-22451	6.7 MEDIUM	Dell Peripheral Manager 权限许可和访问控制问题漏洞
CVE-2024-30476	5.4 MEDIUM	Dell EMC PowerStore 存储型XSS漏洞

IV. Related Vulnerabilities

Same product: Peripheral Manager

CVE-2024-22451
Dell Peripheral Manager 权限许可和访问控制问题漏洞

Same vendor: Dell

Same weakness: CWE-427

V. Comments for CVE-2024-22447

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2024-22447

Possible ATT&CK Techniques 1AI

Affected Version Matrix 1

I. Basic Information for CVE-2024-22447

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2024-22447

III. Intelligence Information for CVE-2024-22447

Vendor Advisories for CVE-2024-22447 (1)

Same Patch Batch · Dell · 2026-06-16 · 6 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2024-22447

Leave a comment