CVE-2023-32482 | Wyse Management Suite

Wyse Management Suite versions prior to 4.0 contain an improper authorization vulnerability. An authenticated malicious user with privileged access can push policies to unauthorized tenant group. .This CVE has a CVSS3.1 score of 4.9 and a Base Severity of MEDIUM.

Info	Details
CVE ID	CVE-2023-32482
CVE State	PUBLISHED
BaseScore	4.9
BaseSeverity	MEDIUM
VectorString	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
Version	NA

References for CVE-2023-32482 :
https://www.dell.com/support/kbdoc/en-us/000215351/dsa-2023-240-dell-wyse-management-suite

Metric Type	Metric Score
AttackVector(AV)	NETWORK
AttackComplexity(AC)	LOW
PrivilegesRequired(PR)	HIGH
UserInteraction(UI)	NONE
Scope(S)	UNCHANGED
Confidentiality(C)	NONE
Availability(A)	NONE
Integrity(I)	HIGH