CVE-2025-43990

HIGH

Dell Command Monitor <10.12.3.28 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-43990. PoCs published by AMkkk221.

AI-analyzed exploit summary This repository contains functional exploit code for CVE-2025-43990, targeting an unauthenticated file upload vulnerability in Magento/Adobe Commerce via REST API guest cart custom_options. The exploit chain includes GraphQL SKU leakage, PNG polyshell upload, and RCE via PHP eval.

Description

Dell Command Monitor (DCM), versions prior to 10.12.3.28, contains an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.

Exploits (1)

nomisec WORKING POC
by AMkkk221 · poc
https://github.com/AMkkk221/CVE-2025-43990-Magento-RCE

This repository contains functional exploit code for CVE-2025-43990, targeting an unauthenticated file upload vulnerability in Magento/Adobe Commerce via REST API guest cart custom_options. The exploit chain includes GraphQL SKU leakage, PNG polyshell upload, and RCE via PHP eval.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Magento/Adobe Commerce
No auth needed
Prerequisites: REST API access · GraphQL endpoint availability
devstral-2 · analyzed Apr 09, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 7.3
EPSS 0.0011
EPSS Percentile 1.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-250
Status published
Products (1)
dell/command_monitor < 10.12.3.28
Published Nov 05, 2025
Tracked Since Feb 18, 2026