Details of VAR-202604-3901

ID

VAR-202604-3901

CVE

CVE-2026-25908

TITLE

Dell's Alienware Command Center Unnecessary Privileged Execution Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2026-013434

DESCRIPTION

Dell Alienware Command Center (AWCC), versions prior to 6.13.8.0, contain an Execution with Unnecessary Privileges vulnerability in the AWCC. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges. All information handled by the software may be rewritten. Furthermore, the software may stop working completely. Furthermore, attacks that exploit this vulnerability will not affect other software

Trust: 1.62

sources: NVD: CVE-2026-25908 // JVNDB: JVNDB-2026-013434

AFFECTED PRODUCTS

vendor:	dell	model:	alienware command center	scope:	lt	version:	6.13.8.0	Trust: 1.0
vendor:	デル	model:	alienware command center	scope:	eq	version:	6.13.8.0	Trust: 0.8
vendor:	デル	model:	alienware command center	scope:	-	version:	-	Trust: 0.8
vendor:	デル	model:	alienware command center	scope:	eq	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2026-013434 // NVD: CVE-2026-25908

CVSS

SEVERITY

CVSSV2

CVSSV3

security_alert@emc.com:	CVE-2026-25908
value:	MEDIUM
Trust: 1.0
nvd@nist.gov:	CVE-2026-25908
value:	HIGH
Trust: 1.0
NVD:	CVE-2026-25908
value:	HIGH
Trust: 0.8

security_alert@emc.com:	CVE-2026-25908
baseSeverity:	MEDIUM
baseScore:	6.7
vectorString:	CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	LOW
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	0.8
impactScore:	5.9
version:	3.1
Trust: 1.0
nvd@nist.gov:	CVE-2026-25908
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2026-25908
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2026-013434 // NVD: CVE-2026-25908 // NVD: CVE-2026-25908

PROBLEMTYPE DATA

problemtype:	CWE-250	Trust: 1.0
problemtype:	Execution with unnecessary privileges (CWE-250) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2026-013434 // NVD: CVE-2026-25908

PATCH

title:

DSA-2026-192

url:

https://www.dell.com/support/kbdoc/en-us/000451018/dsa-2026-192-security-update-for-dell-alienware-command-center-6-x-for-multiple-vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2026-013434

EXTERNAL IDS

db:	NVD	id:	CVE-2026-25908	Trust: 2.6
db:	JVNDB	id:	JVNDB-2026-013434	Trust: 0.8

sources: JVNDB: JVNDB-2026-013434 // NVD: CVE-2026-25908

REFERENCES

url:	https://www.dell.com/support/kbdoc/en-us/000451018/dsa-2026-192-security-update-for-dell-alienware-command-center-6-x-for-multiple-vulnerabilities	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2026-25908	Trust: 0.8

sources: JVNDB: JVNDB-2026-013434 // NVD: CVE-2026-25908

SOURCES

db:	JVNDB	id:	JVNDB-2026-013434
db:	NVD	id:	CVE-2026-25908

LAST UPDATE DATE

2026-06-19T23:40:08.455000+00:00

SOURCES UPDATE DATE

db:	JVNDB	id:	JVNDB-2026-013434	date:	2026-04-30T03:16:00
db:	NVD	id:	CVE-2026-25908	date:	2026-04-28T20:12:53.913

SOURCES RELEASE DATE

db:	JVNDB	id:	JVNDB-2026-013434	date:	2026-04-30T00:00:00
db:	NVD	id:	CVE-2026-25908	date:	2026-04-27T18:16:53.360