Dell Wyse Management Suite vulnerability: Authentication Bypass risk
CVE-2024-49595

4.9MEDIUM

Key Information:

Vendor
Dell
Vendor
CVE Published:
26 November 2024

Summary

The Dell Wyse Management Suite has been found to contain an Authentication Bypass vulnerability that could allow high-privileged attackers with remote access to exploit the system. This could potentially result in unauthorized actions leading to Denial of Service. Affected versions include 4.4 and earlier, emphasizing the need for immediate attention from users of the product to secure their systems against potential exploitation.

Affected Version(s)

Wyse Management Suite <= 4.4

References

CVSS V3.1

Score:
4.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Dell Technologies would like to thank Harm Blankers, Jasper Westerman, Yanick de Pater of REQON B.V. for reporting this issue.
.