CVE-2022-33925
First published: Wed Aug 10 2022(Updated: )
Dell Wyse Management Suite 3.6.1 and below contains an Improper Access control vulnerability in UI. An remote authenticated attacker could potentially exploit this vulnerability by bypassing access controls in order to download reports containing sensitive information.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Wyse Management Suite | <3.8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for Dell Wyse Management Suite?
The vulnerability ID for Dell Wyse Management Suite is CVE-2022-33925.
What is the severity of CVE-2022-33925?
The severity of CVE-2022-33925 is medium (6.5).
What is affected by CVE-2022-33925?
Dell Wyse Management Suite versions up to and including 3.6.1 are affected by CVE-2022-33925.
How can an attacker exploit CVE-2022-33925?
A remote authenticated attacker could potentially exploit CVE-2022-33925 by bypassing access controls in the UI to download reports containing sensitive information.
Is there a security update available for CVE-2022-33925?
Yes, Dell has released a security update to address CVE-2022-33925. Please refer to the Dell support page for more information.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/references
- agent/weakness
- agent/severity
- agent/description
- agent/author
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- vendor/dell
- canonical/dell wyse management suite