Dell: >> Wyse Management Suite >> 3.2 Security Vulnerabilities
Dell Wyse Management Suite versions 2.0 through 3.5.2 contain an unrestricted file upload vulnerability. A malicious user with admin privileges can exploit this vulnerability in order to execute arbitrary code on the system.
CVSS Score
7.2
EPSS Score
0.007
Published
2022-04-01
Wyse Management Suite 3.3.1 and below versions contain a deserialization vulnerability that could allow an unauthenticated attacker to execute code on the affected system.
CVSS Score
9.8
EPSS Score
0.031
Published
2021-12-21
Dell Wyse Management Suite version 3.3.1 and prior support insecure Transport Security Protocols TLS 1.0 and TLS 1.1 which are susceptible to Man-In-The-Middle attacks thereby compromising Confidentiality and Integrity of data.
CVSS Score
6.5
EPSS Score
0.001
Published
2021-12-21
Wyse Management Suite versions 3.2 and earlier contain an absolute path traversal vulnerability. A remote authenticated malicious user could exploit this vulnerability in order to read arbitrary files on the system.
CVSS Score
8.1
EPSS Score
0.461
Published
2021-07-15
Dell Wyse Management Suite versions 3.2 and earlier contain a full path disclosure vulnerability. A local unauthenticated attacker could exploit this vulnerability in order to obtain the path of files and folders.
CVSS Score
5.3
EPSS Score
0.054
Published
2021-07-15
Page 5