Details of VAR-202504-2742

ID

VAR-202504-2742

CVE

CVE-2025-30100

TITLE

Dell's Alienware Command Center access control vulnerabilities in

Trust: 0.8

sources: JVNDB: JVNDB-2025-024754

DESCRIPTION

Dell Alienware Command Center 6.x, versions prior to 6.7.37.0 contain an Improper Access Control Vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges. All information handled by the software may be rewritten. Furthermore, the software may stop working completely. Furthermore, attacks that exploit this vulnerability will not affect other software

Trust: 1.62

sources: NVD: CVE-2025-30100 // JVNDB: JVNDB-2025-024754

AFFECTED PRODUCTS

vendor:	dell	model:	alienware command center	scope:	gte	version:	6.0	Trust: 1.0
vendor:	dell	model:	alienware command center	scope:	lt	version:	6.7.37.0	Trust: 1.0
vendor:	デル	model:	alienware command center	scope:	eq	version:	6.0 that's all 6.7.37.0	Trust: 0.8
vendor:	デル	model:	alienware command center	scope:	eq	version:	-	Trust: 0.8
vendor:	デル	model:	alienware command center	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2025-024754 // NVD: CVE-2025-30100

CVSS

SEVERITY

CVSSV2

CVSSV3

security_alert@emc.com:	CVE-2025-30100
value:	MEDIUM
Trust: 1.0
nvd@nist.gov:	CVE-2025-30100
value:	HIGH
Trust: 1.0
NVD:	CVE-2025-30100
value:	HIGH
Trust: 0.8

security_alert@emc.com:	CVE-2025-30100
baseSeverity:	MEDIUM
baseScore:	6.7
vectorString:	CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	LOW
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	0.8
impactScore:	5.9
version:	3.1
Trust: 1.0
nvd@nist.gov:	CVE-2025-30100
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2025-30100
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2025-024754 // NVD: CVE-2025-30100 // NVD: CVE-2025-30100

PROBLEMTYPE DATA

problemtype:	CWE-284	Trust: 1.0
problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	Inappropriate access control (CWE-284) [ others ]	Trust: 0.8
problemtype:	others (CWE-Other) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2025-024754 // NVD: CVE-2025-30100

PATCH

title:

DSA-2025-168

url:

https://www.dell.com/support/kbdoc/en-us/000305002/dsa-2025-168

Trust: 0.8

sources: JVNDB: JVNDB-2025-024754

EXTERNAL IDS

db:	NVD	id:	CVE-2025-30100	Trust: 2.6
db:	JVNDB	id:	JVNDB-2025-024754	Trust: 0.8

sources: JVNDB: JVNDB-2025-024754 // NVD: CVE-2025-30100

REFERENCES

url:	https://www.dell.com/support/kbdoc/en-us/000305002/dsa-2025-168	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2025-30100	Trust: 0.8

sources: JVNDB: JVNDB-2025-024754 // NVD: CVE-2025-30100

SOURCES

db:	JVNDB	id:	JVNDB-2025-024754
db:	NVD	id:	CVE-2025-30100

LAST UPDATE DATE

2026-01-20T23:38:36.901000+00:00

SOURCES UPDATE DATE

db:	JVNDB	id:	JVNDB-2025-024754	date:	2026-01-16T05:23:00
db:	NVD	id:	CVE-2025-30100	date:	2026-01-14T14:30:35.487

SOURCES RELEASE DATE

db:	JVNDB	id:	JVNDB-2025-024754	date:	2026-01-16T00:00:00
db:	NVD	id:	CVE-2025-30100	date:	2025-04-16T02:15:41.270