Dell Wyse 5070 Thin Client

CPE Details

Dell Wyse 5070 Thin Client
dell
wyse_5070_thin_client
-
2020-06-22
11h20 +00:00
2021-03-19
16h21 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:h:dell:wyse_5070_thin_client:-:*:*:*:*:*:*:*

Informations

Vendor

dell

Product

wyse_5070_thin_client

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-32447 2023-07-20 12h55 +00:00 Dell Wyse ThinOS versions prior to 2306 (9.4.2103) contain a sensitive information disclosure vulnerability. A malicious user with local access to the device could exploit this vulnerability to read sensitive information written to the log files.
5.5
Medium
CVE-2023-32446 2023-07-20 12h50 +00:00 Dell Wyse ThinOS versions prior to 2303 (9.4.1141) contain a sensitive information disclosure vulnerability. An unauthenticated malicious user with local access to the device could exploit this vulnerability to read sensitive information written to the log files.
5.5
Medium
CVE-2023-32455 2023-07-20 12h44 +00:00 Dell Wyse ThinOS versions prior to 2208 (9.3.2102) contain a sensitive information disclosure vulnerability. An unauthenticated malicious user with local access to the device could exploit this vulnerability to read sensitive information written to the log files.
5.5
Medium
CVE-2022-34402 2022-10-10 20h55 +00:00 Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An admin privilege attacker could potentially exploit this vulnerability, leading to denial-of-service.
6.8
Medium
CVE-2021-21598 2021-08-10 19h05 +00:00 Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system could exploit this vulnerability to read sensitive Smartcard data in log files.
3.9
Low
CVE-2021-21597 2021-08-10 19h05 +00:00 Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system could exploit this vulnerability to read sensitive information written to the log files.
7.2
High
CVE-2021-21552 2021-05-21 20h05 +00:00 Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass the restricted environment and perform unauthorized actions on the affected system.
8.8
High
CVE-2020-5362 2020-06-10 20h40 +00:00 Dell Client Consumer and Commercial platforms include an improper authorization vulnerability in the Dell Manageability interface for which an unauthorized actor, with local system access with OS administrator privileges, could bypass the BIOS Administrator authentication to restore BIOS Setup configuration to default values.
7.1
High
CVE-2020-5324 2020-02-21 14h50 +00:00 Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this time window, a locally authenticated low-privileged malicious user could exploit this vulnerability by tricking an administrator into overwriting arbitrary files via a symlink attack. The vulnerability does not affect the actual binary payload that the update utility delivers.
7.1
High