Severity
Medium
Analysis Summary
CVE-2025-30100 CVSS:6.7
Dell Alienware Command Center 6.x, versions before 6.7.37.0 contain an Improper Access Control Vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.
CVE-2025-29984 CVSS:6.7
Dell Trusted Device, versions before 7.0.3.0, contain an Incorrect Default Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.
CVE-2025-29983 CVSS:6.7
Dell Trusted Device versions before 7.0.3.0 have a vulnerability related to improper link resolution before file access. This security issue, known as a 'Link Following' vulnerability, could enable a local attacker with low privileges to potentially elevate their system permissions. The vulnerability exists in versions prior to 7.0.3.0, which means that administrators should update to the latest version to mitigate this security risk.
Impact
- Privilege Escalation
Indicators of Compromise
CVE
CVE-2025-30100
CVE-2025-29984
CVE-2025-29983
Affected Vendors
- Dell
Affected Products
- Dell Alienware Command Center - 6.7.37.0
- Dell Trusted Device - 7.0.3.0
Remediation
Refer to Dell Website for patch, upgrade, or suggested workaround information.