exploitDog

CVE-2022-23157

Опубликовано: 01 апр. 2022

Источник: nvd

CVSS3: 4.4

CVSS2: 2.1

EPSS Низкий

Описание

Wyse Device Agent version 14.6.1.4 and below contain a sensitive data exposure vulnerability. A authenticated malicious user could potentially exploit this vulnerability in order to view sensitive information from the WMS Server.

Ссылки

https://www.dell.com/support/kbdoc/000196005
Vendor Advisory
https://www.dell.com/support/kbdoc/000196005
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:wyse_device_agent:*:*:*:*:*:*:*:*

Версия до 14.6.1.4 (включая)

EPSS

Процентиль: 17%

0.00053

Низкий

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200

CWE-200

Связанные уязвимости

GHSA-75rm-gcmc-2vhj

CVSS3: 4.4

github

почти 4 года назад

Wyse Device Agent version 14.6.1.4 and below contain a sensitive data exposure vulnerability. A authenticated malicious user could potentially exploit this vulnerability in order to view sensitive information from the WMS Server.

EPSS

Процентиль: 17%

0.00053

Низкий

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200

CWE-200