CVE-2022-34402

Name of the Vulnerable Software and Affected Versions Dell Wyse ThinOS version 2205

Description The issue is related to the use of a regular expression with inefficient computational complexity in the UI of Dell Wyse ThinOS. This could allow a remote attacker to cause a denial-of-service. An attacker with admin privileges may potentially exploit this, leading to a denial-of-service.

Recommendations For Dell Wyse ThinOS version 2205, consider restricting access to the UI until a patch is available to prevent potential denial-of-service attacks. As a temporary workaround, limiting the use of regular expressions in the UI may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.