CRITICAL🇬🇧 English

CVE-2020-29491

CVSS 10.0v3.1pub. 2021-01-04upd. 2024-11-21

Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to gain access to the sensitive information on the local network, leading to the potential compromise of impacted thin clients.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Dell Wyse 3040

    HW
    Dell
    wszystkie wersje
  • Dell Wyse 5010

    HW
    Dell
    wszystkie wersje
  • Dell Wyse 5040

    HW
    Dell
    wszystkie wersje
  • Dell Wyse 5060

    HW
    Dell
    wszystkie wersje
  • Dell Wyse 5070

    HW
    Dell
    wszystkie wersje
  • Dell Wyse 5470

    HW
    Dell
    wszystkie wersje
  • Dell Wyse 7010

    HW
    Dell
    wszystkie wersje
  • Dell Wyse Thinos

    OS
    Dell
    ≤ 8.6
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth Bypass
CWE
Referencje

Powiązane podatności

CVE-2020-29492CRITICAL10.0ten sam produkt

Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote unau...

CVE-2024-42427HIGH7.6ten sam produkt

Dell ThinOS versions 2402 and 2405, contains an Improper Neutralization of Special Elements used in a Command ...

CVE-2024-22429HIGH7.5ten sam produkt

Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin...

CVE-2021-21597HIGH7.2ten sam produkt

Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated mal...

CVE-2023-32447MEDIUM5.5ten sam produkt

Dell Wyse ThinOS versions prior to 2306 (9.4.2103) contain a sensitive information disclosure vulnerability. ...