CVE-2021-21597
First published: Tue Aug 10 2021(Updated: )
Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system could exploit this vulnerability to read sensitive information written to the log files.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Wyse ThinOS | =9.0 | |
| Dell Wyse ThinOS | =9.1 | |
| Dell Wyse ThinOS | =9.1-mr1 | |
| Dell Wyse 3040 Thin Client | ||
| Dell Wyse 5070 Thin Client | ||
| Dell Wyse 5470 Thin Client |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Dell Wyse ThinOS vulnerability?
The vulnerability ID for this Dell Wyse ThinOS vulnerability is CVE-2021-21597.
What is the severity of CVE-2021-21597?
The severity of CVE-2021-21597 is high (3.9).
What is the affected software for CVE-2021-21597?
The affected software for CVE-2021-21597 is Dell Wyse ThinOS versions 9.0, 9.1, and 9.1-mr1.
How can this vulnerability be exploited?
An authenticated malicious user with physical access to the system could exploit this vulnerability to read sensitive information written to the log files.
How can I fix CVE-2021-21597?
To fix CVE-2021-21597, apply the necessary updates provided by Dell.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- agent/remedy
- collector/mitre-cve
- source/MITRE
- vendor/dell
- canonical/dell wyse thinos
- version/dell wyse thinos/9.0
- version/dell wyse thinos/9.1
- version/dell wyse thinos/9.1-mr1
- canonical/dell wyse 3040 thin client
- canonical/dell wyse 5070 thin client
- canonical/dell wyse 5470 thin client