Access Control Flaw in Wyse Management Suite by Dell

CVE-2022-46754

What is CVE-2022-46754?

An improper access control vulnerability exists in Wyse Management Suite 3.8 and earlier, which allows authenticated malicious admin users to access pro license features without the required permissions. This access could enable these users to configure external entities controlled by users, posing significant security risks. Organizations using affected versions should implement necessary updates and security measures to mitigate potential exploitation.

References