Execution with Unnecessary Privileges Vulnerability in Dell Command Monitor
CVE-2025-43990

7.3HIGH

Key Information:

Vendor: Dell
Status: Command Monitor (dcm)
Vendor: CVE Published:; 5 November 2025

What is CVE-2025-43990?

Dell Command Monitor prior to version 10.12.3.28 is susceptible to a vulnerability that allows a low privileged attacker with local access to execute code with elevated privileges. This exploitation could lead to unauthorized actions performed under higher privilege levels, posing a significant security risk. Administrators are advised to update to the latest version to mitigate potential threats.

Affected Version(s)

Command Monitor (DCM) < 10.12.3.28

References

https://www.dell.com/support/kbdoc/en-us/000384947/dsa-20...

vendor-advisory

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 5, 2025
Vulnerability Reserved
Apr 21, 2025

Credit

Dell Technologies would like to thank Marius Gabriel Mihai for reporting this issue.

JSON