US 12,013,949 B2
Method and system for performing a local vulnerability check of an application upgrade to be downloaded before initiating the upgrade
Parminder Singh Sethi, Ludhiana (IN); Shelesh Chopra, Bangalore (IN); and Lakshmi Saroja Nalam, Bangalore (IN)
Assigned to Dell Products L.P., Round Rock, TX (US)
Filed by Dell Products L.P., Round Rock, TX (US)
Filed on Jan. 24, 2022, as Appl. No. 17/582,506.
Prior Publication US 2023/0237159 A1, Jul. 27, 2023
Int. Cl. G06F 21/57 (2013.01)
CPC G06F 21/577 (2013.01) [G06F 2221/033 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method for performing a local vulnerability check of an application upgrade to be downloaded, the method comprising:
receiving an application upgrade download request from a client device;
sending, by a client device upgrade manager, information related to the application upgrade download request to a local vulnerability validator, wherein the information related to the request comprises device configuration information of the client device,
wherein the device configuration information comprises configurations of a set of client devices that has requested the application upgrade;
determining, by the local vulnerability validator and based on impact score information that is generated using the information related to the request, that a specific version of the application upgrade to be downloaded has vulnerabilities,
wherein the local vulnerability validator performs the determining based on a common vulnerability scoring system,
wherein, when generating the impact score information, the local vulnerability validator further considers a set of impact factor parameters comprising an attack vector and an attack complexity;
sending the impact score information to the client device upgrade manager; and
notifying, based on the impact score information, the client device that the application upgrade to be downloaded has vulnerabilities.