Code Execution Vulnerability in Alludo MindManager for Windows
CVE-2025-30075

2.2LOW

Key Information:

Vendor: Alludo
Status: Mindmanager
Vendor: CVE Published:; 16 September 2025

What is CVE-2025-30075?

A vulnerability in Alludo MindManager prior to version 25.0.208 on Windows allows attackers to execute arbitrary code by writing DLL files to user-accessible directories included in the DLL search path. If successful, this could lead to unauthorized actions performed on behalf of local users within the affected environment.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

MindManager 0 < 25.0.208

References

https://pastebin.com/5CaNfyGH

CVSS V3.1

Score:

2.2

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Mar 16, 2025

JSON

Alludo