Client-Side Enforcement of Server-Side Security Vulnerability in Dell Wyse Management Suite
CVE-2026-23859

2.7LOW

Key Information:

Vendor: Dell
Status: Wyse Management Suite
Vendor: CVE Published:; 24 February 2026

What is CVE-2026-23859?

The Dell Wyse Management Suite, specifically in versions prior to 5.5, exhibits a vulnerability that allows high-privileged attackers with remote access to bypass protection mechanisms. This type of vulnerability highlights a significant weakness where client-side security measures fail to enforce server-side controls effectively, potentially leading to unauthorized actions and data exposure.

Affected Version(s)

Wyse Management Suite < 5.5

References

https://www.dell.com/support/kbdoc/en-us/000429141/dsa-20...

vendor-advisory

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 24, 2026
Vulnerability Reserved
Jan 16, 2026

CVE-2026-23859 Data

JSON