CVE-2025-30075 LOW

CVE-2025-30075

Vendor Alludo
Product MindManager
Weakness CWE-673
Published September 16, 2025
Last update September 16, 2025

CVSS base score

2.2/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction Required
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

In Alludo MindManager before 25.0.208 on Windows, attackers could potentially execute code as other local users on the same machine if they could write DLL files to directories within victims' DLL search paths.

Key dates

02Disclosure timeline

September 16, 2025 CVE published
September 16, 2025 Record updated