CVE-2021-21598
First published: Wed Jul 21 2021(Updated: )
Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system could exploit this vulnerability to read sensitive Smartcard data in log files.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Wyse ThinOS | =9.0 | |
| Dell Wyse ThinOS | =9.1 | |
| Dell Wyse ThinOS | =9.1-mr1 | |
| Dell Wyse 3040 Thin Client | ||
| Dell Wyse 5070 Thin Client | ||
| Dell Wyse 5470 Thin Client |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2021-21598.
What is the severity of CVE-2021-21598?
The severity of CVE-2021-21598 is low (3.9).
Which versions of Dell Wyse ThinOS are affected by CVE-2021-21598?
Dell Wyse ThinOS versions 9.0, 9.1, and 9.1 MR1 are affected by CVE-2021-21598.
How can an attacker exploit CVE-2021-21598?
An authenticated attacker with physical access to the system could exploit CVE-2021-21598 to read sensitive Smartcard data in log files.
Is Dell Wyse 3040 Thin Client vulnerable to CVE-2021-21598?
No, Dell Wyse 3040 Thin Client is not vulnerable to CVE-2021-21598.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/remedy
- agent/tags
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/dell
- canonical/dell wyse thinos
- version/dell wyse thinos/9.0
- version/dell wyse thinos/9.1
- version/dell wyse thinos/9.1-mr1
- canonical/dell wyse 3040 thin client
- canonical/dell wyse 5070 thin client
- canonical/dell wyse 5470 thin client