CVE-2021-21587

Published: Jul 15, 2021Modified: Nov 21, 2024

3.3

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitability: 1.8 / Impact: 1.4

Source: NVD

Description

Dell Wyse Management Suite versions 3.2 and earlier contain a full path disclosure vulnerability. A local unauthenticated attacker could exploit this vulnerability in order to obtain the path of files and folders.

Affected (1)

Products: Dell: Wyse Management Suite

Dell

1 product

Wyse Management Suite

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Dell Wyse Management Suite	Up to 3.2

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

https://www.dell.com/support/kbdoc/000189363

Source: security_alert@emc.com

PatchVendor Advisory

https://www.dell.com/support/kbdoc/000189363

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.