Описание
Dell ThinOS versions 2402 and 2405, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Elevation of privileges.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:dell:wyse_thinos:9.5.1079:*:*:*:*:*:*:*
cpe:2.3:o:dell:wyse_thinos:9.5.2109:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00974
Низкий
7.6 High
CVSS3
Дефекты
CWE-77
CWE-77
Связанные уязвимости
CVSS3: 7.6
github
больше 1 года назад
Dell ThinOS versions 2402 and 2405, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Elevation of privileges.
EPSS
Процентиль: 76%
0.00974
Низкий
7.6 High
CVSS3
Дефекты
CWE-77
CWE-77