A Positive Technologies researcher demonstrates an attack on Dell Wyse Management Suite (On‑Prem) that allows a remote, unauthenticated attacker to execute arbitrary code.

In vulnerable versions of WMS, improper access control checks and flawed request handling can lead to arbitrary code execution on the server, potentially allowing an attacker to take control of managed devices.

📎 Article: https://swarm.ptsecurity.com/business-logic-and-chains-unauthenticated-rce-in-dell-wyse-management-suite/

💬 Discuss

RCE in Dell Wyse Management Suite (On‑Prem)