CVE-2023-32481

2023-07-2012:15:11

CWE-770

[email protected]

web.nvd.nist.gov

147

wyse management suite

vulnerability

dos

denial of service

cve-2023-32481

nvd

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.3%

JSON

Wyse Management Suite versions prior to 4.0 contain a denial-of-service vulnerability. An authenticated malicious user can flood the configured SMTP server with numerous requests in order to deny access to the system.

Affected configurations

NVD

Node

dellwyse_management_suiteRange<4.0

CPENameOperatorVersion
dell:wyse_management_suitedell wyse management suitelt4.0

CPE	Name	Operator	Version
dell:wyse_management_suite	dell wyse management suite	lt	4.0

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Wyse Management Suite\t",
    "vendor": "Dell",
    "versions": [
      {
        "status": "affected",
        "version": "4.0 and below"
      }
    ]
  }
]