Vulnerability Details CVE-2022-23155
Dell Wyse Management Suite versions 2.0 through 3.5.2 contain an unrestricted file upload vulnerability. A malicious user with admin privileges can exploit this vulnerability in order to execute arbitrary code on the system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.9%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 9.0
References
Products affected by CVE-2022-23155
-
cpe:2.3:a:dell:wyse_management_suite:2.0
-
cpe:2.3:a:dell:wyse_management_suite:3.0
-
cpe:2.3:a:dell:wyse_management_suite:3.1
-
cpe:2.3:a:dell:wyse_management_suite:3.2
-
cpe:2.3:a:dell:wyse_management_suite:3.3.1
-
cpe:2.3:a:dell:wyse_management_suite:3.5.1
-
cpe:2.3:a:dell:wyse_management_suite:3.5.2