Dell

Wyse Management Suite

48 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2022-33926

  • EPSS 0.2%
  • Veröffentlicht 10.08.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 07:08:37

Dell Wyse Management Suite 3.6.1 and below contains an improper access control vulnerability. A remote malicious user could exploit this vulnerability in order to retain access to a file repository after it has been revoked.

6.5

CVE-2022-33925

  • EPSS 0.21%
  • Veröffentlicht 10.08.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 07:08:37

Dell Wyse Management Suite 3.6.1 and below contains an Improper Access control vulnerability in UI. An remote authenticated attacker could potentially exploit this vulnerability by bypassing access controls in order to download reports containing sen...

5.3

CVE-2022-33924

  • EPSS 0.08%
  • Veröffentlicht 10.08.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 07:08:37

Dell Wyse Management Suite 3.6.1 and below contains an Improper Access control vulnerability with which an attacker with no access to create rules could potentially exploit this vulnerability and create rules.

6.5

CVE-2022-29090

  • EPSS 0.14%
  • Veröffentlicht 10.08.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:58:27

Dell Wyse Management Suite 3.6.1 and below contains a Sensitive Data Exposure vulnerability. A low privileged malicious user could potentially exploit this vulnerability in order to obtain credentials. The attacker may be able to use the exposed cred...

5.4

CVE-2022-29096

  • EPSS 0.6%
  • Veröffentlicht 24.06.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:58:28

Dell Wyse Management Suite 3.6.1 and below contains a Reflected Cross-Site Scripting Vulnerability in saveGroupConfigurations page. An authenticated attacker could potentially exploit this vulnerability, leading to the execution of malicious HTML or ...

4.9

CVE-2022-29097

  • EPSS 0.2%
  • Veröffentlicht 24.06.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:58:28

Dell WMS 3.6.1 and below contains a Path Traversal vulnerability in Device API. A remote attacker could potentially exploit this vulnerability, to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the ...

9

CVE-2022-23155

  • EPSS 0.74%
  • Veröffentlicht 01.04.2022 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:48:05

Dell Wyse Management Suite versions 2.0 through 3.5.2 contain an unrestricted file upload vulnerability. A malicious user with admin privileges can exploit this vulnerability in order to execute arbitrary code on the system.

7.4

CVE-2021-36337

  • EPSS 0.1%
  • Veröffentlicht 21.12.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:32

Dell Wyse Management Suite version 3.3.1 and prior support insecure Transport Security Protocols TLS 1.0 and TLS 1.1 which are susceptible to Man-In-The-Middle attacks thereby compromising Confidentiality and Integrity of data.

9.8

CVE-2021-36336

  • EPSS 3.06%
  • Veröffentlicht 21.12.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:32

Wyse Management Suite 3.3.1 and below versions contain a deserialization vulnerability that could allow an unauthenticated attacker to execute code on the affected system.

3.3

CVE-2021-21587

  • EPSS 5.4%
  • Veröffentlicht 15.07.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:39

Dell Wyse Management Suite versions 3.2 and earlier contain a full path disclosure vulnerability. A local unauthenticated attacker could exploit this vulnerability in order to obtain the path of files and folders.