CVE-2022-46676
First published: Fri Feb 10 2023(Updated: )
Wyse Management Suite 3.8 and below contain an improper access control vulnerability. A malicious admin user can disable or delete users under administration and unassigned admins for which the group admin is not authorized.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Wyse Management Suite | <=3.8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for the Wyse Management Suite access control vulnerability?
The vulnerability ID for the Wyse Management Suite access control vulnerability is CVE-2022-46676.
What is the severity level of CVE-2022-46676?
CVE-2022-46676 has a severity level of medium, with a severity value of 4.9.
Which versions of Wyse Management Suite are affected by CVE-2022-46676?
Wyse Management Suite versions up to and including 3.8.0 are affected by CVE-2022-46676.
What can a malicious admin user do with CVE-2022-46676?
A malicious admin user can disable or delete users under administration and unassigned admins for which the group admin is not authorized.
Is there a security update available for CVE-2022-46676?
Yes, Dell has released a security update for Wyse Management Suite to address the vulnerabilities, including CVE-2022-46676. Refer to the Dell support article for more information.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/tags
- agent/last-modified-date
- agent/weakness
- agent/first-publish-date
- agent/author
- agent/description
- agent/event
- agent/source
- vendor/dell
- canonical/dell wyse management suite
- version/dell wyse management suite/3.8.0