PT-2021-14630 · Dell · Wyse Management Suite

David Cash

Published

2021-07-15

Updated

2021-07-31

CVE-2021-21586

CVSS v3.1

8.1

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Wyse Management Suite versions 3.2 and earlier

Description The issue allows a remote authenticated malicious user to exploit an absolute path traversal vulnerability, enabling them to read arbitrary files on the system.

Recommendations For Wyse Management Suite versions 3.2 and earlier, update to a version later than 3.2 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-36CWE-22

Related Identifiers

CVE-2021-21586

Affected Products

Wyse Management Suite

PT-2021-14630 · Dell · Wyse Management Suite

CVE-2021-21586

Weakness Enumeration

Related Identifiers

Affected Products

References · 5