CVE-2022-34365

WMS 3.7 contains a Path Traversal Vulnerability in Device API. An attacker could potentially exploit this vulnerability, to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.
Configurations

Configuration 1 (hide)

cpe:2.3:a:dell:wyse_management_suite:*:*:*:*:*:*:*:*

History

21 Nov 2024, 07:09

Type Values Removed Values Added
References () https://www.dell.com/support/kbdoc/en-us/000201383/dsa-2022-134-dell-wyse-management-suite-security-update-for-multiple-vulnerabilities - Vendor Advisory () https://www.dell.com/support/kbdoc/en-us/000201383/dsa-2022-134-dell-wyse-management-suite-security-update-for-multiple-vulnerabilities - Vendor Advisory

13 Aug 2022, 00:14

Type Values Removed Values Added
References (CONFIRM) https://www.dell.com/support/kbdoc/en-us/000201383/dsa-2022-134-dell-wyse-management-suite-security-update-for-multiple-vulnerabilities - (CONFIRM) https://www.dell.com/support/kbdoc/en-us/000201383/dsa-2022-134-dell-wyse-management-suite-security-update-for-multiple-vulnerabilities - Vendor Advisory
CWE CWE-22
CPE cpe:2.3:a:dell:wyse_management_suite:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.5

10 Aug 2022, 17:53

Type Values Removed Values Added
New CVE

Information

Published : 2022-08-10 17:15

Updated : 2024-11-21 07:09


NVD link : CVE-2022-34365

Mitre link : CVE-2022-34365

CVE.ORG link : CVE-2022-34365


JSON object : View

Products Affected

dell

  • wyse_management_suite
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')