Wyse Management Suite Security Vulnerabilities and Issues — Wyse Management Suite CVE List

Lucene search

DellWyse Management Suite

12 matches found

CVE•added 2025/04/02 1:15 a.m.•51 views

CVE-2025-27693

Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Script injection.

4.9CVSS7.2AI score0.0004EPSS

CVE•added 2025/04/02 1:15 a.m.•51 views

CVE-2025-27694

Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Insufficient Resource Pool vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Denial of service.

7.5CVSS7.2AI score0.00067EPSS

CVE•added 2025/04/02 1:15 a.m.•49 views

CVE-2025-29981

Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Exposure of Sensitive Information Through Data Queries vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.

7.5CVSS7.1AI score0.00086EPSS

CVE•added 2025/04/02 1:15 a.m.•47 views

CVE-2025-29982

Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Insecure Inherited Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access.

6.8CVSS6.8AI score0.00015EPSS

CVE•added 2025/05/08 7:16 p.m.•38 views

CVE-2025-27695

Dell Wyse Management Suite, versions prior to WMS 5.1 contain an Authentication Bypass by Spoofing vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information Disclosure.

4.9CVSS4.9AI score0.00073EPSS

CVE•added 2025/06/10 6:15 p.m.•35 views

CVE-2025-36574

Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Absolute Path Traversal vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure and Unauthorized access.

8.2CVSS7.2AI score0.00334EPSS

CVE•added 2025/06/10 6:15 p.m.•34 views

CVE-2025-36576

Dell Wyse Management Suite, versions prior to WMS 5.2, contain a Cross-Site Request Forgery (CSRF) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Server-side request forgery.

2.7CVSS7AI score0.00024EPSS

CVE•added 2025/06/10 6:15 p.m.•33 views

CVE-2025-36580

Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Script injection

6.1CVSS7.2AI score0.00034EPSS

CVE•added 2025/06/10 6:15 p.m.•32 views

CVE-2025-36575

Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Exposure of Sensitive Information Through Data Queries vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.

7.5CVSS7.1AI score0.00082EPSS

CVE•added 2025/06/10 6:15 p.m.•32 views

CVE-2025-36577

6.1CVSS7.2AI score0.00036EPSS

CVE•added 2025/06/10 6:15 p.m.•32 views

CVE-2025-36578

Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Incorrect Authorization vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.

6.8CVSS6.7AI score0.00046EPSS

CVE•added 2025/04/02 1:15 a.m.•21 views

CVE-2025-27692

Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Unrestricted Upload of File with Dangerous Type vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service, Information disclosure, and Remote execution

7.2CVSS7.2AI score0.00282EPSS