Dell Wyse Management Suite Vulnerability Could Lead to Protection Mechanism Bypass
CVE-2024-49597

7.2HIGH

Key Information:

Vendor: Dell
Status: Wyse Management Suite
Vendor: CVE Published:; 26 November 2024

What is CVE-2024-49597?

The vulnerability in Dell Wyse Management Suite, specifically versions 4.4 and earlier, relates to an improper restriction of excessive authentication attempts. This flaw could be exploited by attackers with high privileges and remote access, allowing them to bypass established protection mechanisms. Such an exploitation could lead to unauthorized access and pose significant security risks for systems managed by Wyse Management Suite.

Affected Version(s)

Wyse Management Suite <= 4.4

References

https://www.dell.com/support/kbdoc/en-us/000244453/dsa-20...

vendor-advisory

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 26, 2024
Vulnerability Reserved
Oct 17, 2024