Sign-up

ID

VAR-202509-1365


CVE

CVE-2025-43726


DESCRIPTION

Dell Alienware Command Center 5.x (AWCC), versions prior to 5.10.2.0, contains an Improper Link Resolution Before File Access ('Link Following')" vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.

Trust: 1.0

sources: NVD: CVE-2025-43726

AFFECTED PRODUCTS

vendor:dellmodel:alienware command centerscope:ltversion:5.10.2.0

Trust: 1.0

sources: NVD: CVE-2025-43726

CVSS

SEVERITY

CVSSV2

CVSSV3

security_alert@emc.com: CVE-2025-43726
value: MEDIUM

Trust: 1.0

nvd@nist.gov: CVE-2025-43726
value: HIGH

Trust: 1.0

security_alert@emc.com: CVE-2025-43726
baseSeverity: MEDIUM
baseScore: 6.7
vectorString: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 0.8
impactScore: 5.9
version: 3.1

Trust: 1.0

nvd@nist.gov: CVE-2025-43726
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.1

Trust: 1.0

sources: NVD: CVE-2025-43726 // NVD: CVE-2025-43726

PROBLEMTYPE DATA

problemtype:CWE-59

Trust: 1.0

sources: NVD: CVE-2025-43726

EXTERNAL IDS

db:NVDid:CVE-2025-43726

Trust: 1.0

sources: NVD: CVE-2025-43726

REFERENCES

url:https://www.dell.com/support/kbdoc/en-us/000361664/dsa-2025-336

Trust: 1.0

sources: NVD: CVE-2025-43726

SOURCES

db:NVDid:CVE-2025-43726

LAST UPDATE DATE

2025-11-18T15:32:58.229000+00:00


SOURCES UPDATE DATE

db:NVDid:CVE-2025-43726date:2025-11-04T15:37:09.027

SOURCES RELEASE DATE

db:NVDid:CVE-2025-43726date:2025-09-02T19:15:31.447