PT-2023-23815 · Dell · Wyse Management Suite
Published
2023-07-20
·
Updated
2023-07-26
·
CVE-2023-32481
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Wyse Management Suite versions prior to 4.0
Description
The issue allows an authenticated malicious user to flood the configured SMTP server with numerous requests, resulting in a denial-of-service. This can deny access to the system.
Recommendations
For Wyse Management Suite versions prior to 4.0, update to version 4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the SMTP server to minimize the risk of exploitation.
Fix
Allocation of Resources Without Limits
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wyse Management Suite