CVE-2025-46369 – Dell Alienware Command Center versions before 6... (How to Fix)

Q: What is the severity of CVE-2025-46369?

CVE-2025-46369 has a CVSS score of 7.8 (HIGH). Dell Alienware Command Center versions before 6.10.15.0 have an insecure temporary file vulnerability that allows local low-privileged attackers to escalate privileges. This affects users running vulnerable AWCC software on their systems. Attackers need local access to exploit this weakness.

📋 TL;DR

Dell Alienware Command Center versions before 6.10.15.0 have an insecure temporary file vulnerability that allows local low-privileged attackers to escalate privileges. This affects users running vulnerable AWCC software on their systems. Attackers need local access to exploit this weakness.

💻 Affected Systems

Products:

Dell Alienware Command Center (AWCC)

Versions: Versions prior to 6.10.15.0

Operating Systems: Windows

Default Config Vulnerable: ⚠️ Yes

Notes: Affects all installations of vulnerable AWCC versions on Windows systems.

📦 What is this software?

Alienware Command Center by Dell

View all CVEs affecting Alienware Command Center →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with administrative privileges, allowing installation of malware, data theft, or persistence mechanisms.

🟠

Likely Case

Local privilege escalation enabling attackers to bypass security controls, install unwanted software, or access restricted system resources.

🟢

If Mitigated

Limited impact with proper user privilege separation and endpoint protection that detects suspicious file operations.

🌐 Internet-Facing: LOW - Requires local access, not directly exploitable over network.

🏢 Internal Only: MEDIUM - Local attackers or malware with user privileges could exploit this for privilege escalation.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW

Requires local access and low privileges. Exploitation likely involves race conditions or symlink attacks on temporary files.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 6.10.15.0 or later

Vendor Advisory: https://www.dell.com/support/kbdoc/en-us/000379467/dsa-2025-392

Restart Required: Yes

Instructions:

1. Download AWCC 6.10.15.0 or later from Dell Support. 2. Close AWCC application. 3. Run installer as administrator. 4. Restart system when prompted.

🔧 Temporary Workarounds

Restrict AWCC Execution

windows

Limit AWCC execution to trusted users only

Monitor Temporary File Operations

windows

Enable auditing for temporary directory file operations

auditpol /set /subcategory:"File System" /success:enable /failure:enable

🧯 If You Can't Patch

Remove or disable AWCC if not essential for system operation
Implement strict user privilege separation and monitor for suspicious privilege escalation attempts

🔍 How to Verify

Check if Vulnerable:

Check AWCC version in Control Panel > Programs and Features or run 'wmic product get name,version' in command prompt

Check Version:

wmic product where "name like 'Alienware Command Center%'" get version

Verify Fix Applied:

Verify AWCC version is 6.10.15.0 or higher after update

📡 Detection & Monitoring

Log Indicators:

Unusual file operations in temporary directories by AWCC processes
Privilege escalation attempts from AWCC-related processes

Network Indicators:

None - local exploitation only

SIEM Query:

Process creation where parent_process contains 'AWCC' and child_process contains privileged commands

📊 Metadata

CVE ID: CVE-2025-46369

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-377

EPSS Score: 0.02% exploit probability (4.5th percentile)

Published: November 13, 2025

Last Updated: November 17, 2025

🔗 References

https://www.dell.com/support/kbdoc/en-us/000379467/dsa-2025-392 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-46369, you might also want to check these: