Improper Access Control in Dell Wyse Management Suite 3.6.1 and Below: Unauthorized Report Download

Improper Access Control in Dell Wyse Management Suite 3.6.1 and Below: Unauthorized Report Download

CVE-2022-33925 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Dell Wyse Management Suite 3.6.1 and below contains an Improper Access control vulnerability in UI. An remote authenticated attacker could potentially exploit this vulnerability by bypassing access controls in order to download reports containing sensitive information.

Learn more about our Web Application Penetration Testing UK.