WMS 3.7 contains a Path Traversal Vulnerability in Device API. An attacker could potentially exploit this vulnerability, to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.
References
Configurations
History
13 Aug 2022, 00:14
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:dell:wyse_management_suite:*:*:*:*:*:*:*:* | |
References | (CONFIRM) https://www.dell.com/support/kbdoc/en-us/000201383/dsa-2022-134-dell-wyse-management-suite-security-update-for-multiple-vulnerabilities - Vendor Advisory | |
First Time |
Dell wyse Management Suite
Dell |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
CWE | CWE-22 |
10 Aug 2022, 17:53
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-08-10 17:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-34365
Mitre link : CVE-2022-34365
CVE.ORG link : CVE-2022-34365
JSON object : View
Products Affected
dell
- wyse_management_suite
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')