Sensitive Information Disclosure Vulnerability in Dell Telemetry Dashboard
CVE-2024-30472
7.5HIGH
Summary
Telemetry Dashboard v1.0.0.8 for Dell ThinOS 2402 contains a sensitive information disclosure vulnerability. An unauthenticated user with local access to the device could exploit this vulnerability leading to information disclosure.
Affected Version(s)
Wyse 5070 Thin Client = Telemetry Dashboard v1.0.0.8 on Thin OS 2402
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database
Credit
Dell would like to thank matrixpdb for reporting this issue.