Dell

Wyse Management Suite

52 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9

CVE-2022-23155

  • EPSS 0.74%
  • Veröffentlicht 01.04.2022 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:48:05

Dell Wyse Management Suite versions 2.0 through 3.5.2 contain an unrestricted file upload vulnerability. A malicious user with admin privileges can exploit this vulnerability in order to execute arbitrary code on the system.

7.4

CVE-2021-36337

  • EPSS 0.1%
  • Veröffentlicht 21.12.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:32

Dell Wyse Management Suite version 3.3.1 and prior support insecure Transport Security Protocols TLS 1.0 and TLS 1.1 which are susceptible to Man-In-The-Middle attacks thereby compromising Confidentiality and Integrity of data.

9.8

CVE-2021-36336

  • EPSS 3.06%
  • Veröffentlicht 21.12.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:32

Wyse Management Suite 3.3.1 and below versions contain a deserialization vulnerability that could allow an unauthenticated attacker to execute code on the affected system.

3.3

CVE-2021-21587

  • EPSS 5.4%
  • Veröffentlicht 15.07.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:39

Dell Wyse Management Suite versions 3.2 and earlier contain a full path disclosure vulnerability. A local unauthenticated attacker could exploit this vulnerability in order to obtain the path of files and folders.

6.8

CVE-2021-21586

  • EPSS 46.07%
  • Veröffentlicht 15.07.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:39

Wyse Management Suite versions 3.2 and earlier contain an absolute path traversal vulnerability. A remote authenticated malicious user could exploit this vulnerability in order to read arbitrary files on the system.

4.3

CVE-2021-21533

  • EPSS 0.23%
  • Veröffentlicht 02.04.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:48:32

Wyse Management Suite versions up to 3.2 contains a vulnerability wherein a malicious authenticated user can cause a denial of service in the job status retrieval page, also affecting other users that would have normally access to the same subset of ...

6.1

CVE-2020-29498

  • EPSS 0.2%
  • Veröffentlicht 04.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:24:07

Dell Wyse Management Suite versions prior to 3.1 contain an open redirect vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to redirect application users to arbitrary web URLs by tricking the victim users t...

5.4

CVE-2020-29497

  • EPSS 0.19%
  • Veröffentlicht 04.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:24:07

Dell Wyse Management Suite versions prior to 3.1 contain a stored cross-site scripting vulnerability. A remote authenticated malicious user with low privileges could exploit this vulnerability to store malicious HTML or JavaScript code under the devi...

4.8

CVE-2020-29496

  • EPSS 0.17%
  • Veröffentlicht 04.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:24:06

Dell Wyse Management Suite versions prior to 3.1 contain a stored cross-site scripting vulnerability. A remote authenticated malicious user with high privileges could exploit this vulnerability to store malicious HTML or JavaScript code while creatin...

6.4

CVE-2019-3770

  • EPSS 0.19%
  • Veröffentlicht 13.03.2020 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:42:29

Dell Wyse Management Suite versions prior to 1.4.1 contain a stored cross-site scripting vulnerability when unregistering a device. A remote authenticated malicious user with low privileges could exploit this vulnerability to store malicious HTML or ...