Regular Expression Denial of Service Vulnerability in Dell Wyse ThinOS
CVE-2022-34402

6.8MEDIUM

Key Information:

Vendor: Dell
Status: Wyse Proprietary Os (modern Thinos)
Vendor: CVE Published:; 10 October 2022

Summary

Dell Wyse ThinOS 2205 is affected by a Regular Expression Denial of Service vulnerability in its user interface. This flaw can be exploited by an attacker with admin privileges to induce a denial-of-service, disrupting the operation of the system. It is crucial for users to implement the latest security updates provided by Dell to mitigate this risk.

Affected Version(s)

Wyse Proprietary OS (Modern ThinOS) < unspecified

References

https://www.dell.com/support/kbdoc/en-us/000203376/dsa-20...

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Oct 10, 2022
Vulnerability Reserved
Jun 23, 2022