Improper Access Control Vulnerability in Wyse Management Suite 3.8 and Below

Improper Access Control Vulnerability in Wyse Management Suite 3.8 and Below

CVE-2022-46754 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Wyse Management Suite 3.8 and below contain an improper access control vulnerability. A authenticated malicious admin user might access certain pro license features for which this admin is not authorized in order to configure user controlled external entities.

Learn more about our External Network Penetration Testing.