Improper Access Control Vulnerability in Dell Wyse Management Suite 3.6.1 and Below: Unauthorized Alert Category Modification

Improper Access Control Vulnerability in Dell Wyse Management Suite 3.6.1 and Below: Unauthorized Alert Category Modification

CVE-2022-33931 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Dell Wyse Management Suite 3.6.1 and below contains an Improper Access control vulnerability in UI. An attacker with no access to Alert Classification page could potentially exploit this vulnerability, leading to the change the alert categories.

Learn more about our Web Application Penetration Testing UK.