CVE-2025-46430

Published Nov 10, 2025

Last updated 8 months ago

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-46430 is an Execution with Unnecessary Privileges vulnerability found in the installer of Dell Display and Peripheral Manager (DDPM) versions prior to 2.1.2.12. A low-privileged attacker with local access could exploit this vulnerability during the installation process. Successful exploitation could lead to an elevation of privileges. The vulnerability exists in the installer process, specifically when a user launches the application directly from the installer. Systems affected are Windows machines equipped with the Dell Display and Peripheral Manager. To mitigate this vulnerability, users should upgrade Dell Display and Peripheral Manager to version 2.1.2.12 or later.

Description
Dell Display and Peripheral Manager, versions prior to 2.1.2.12, contains an Execution with Unnecessary Privileges vulnerability in the Installer. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.
Source
security_alert@emc.com
NVD status
Analyzed
Products
display_and_peripheral_manager

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.3
Impact score
5.9
Exploitability score
1.3
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

security_alert@emc.com
CWE-250

Social media

Hype score
Not currently trending

Configurations

References

Sources include official advisories and independent security research.