Wyse Management Suite versions prior to 4.0 contain a sensitive information disclosure vulnerability. An authenticated malicious user having local access to the system running the application could exploit this vulnerability to read sensitive information written to log files.
.This CVE has a CVSS3.1 score of 4.4 and a Base Severity of MEDIUM.
| Info | Details |
|---|---|
| CVE ID | CVE-2023-32483 |
| CVE State | PUBLISHED |
| BaseScore | 4.4 |
| BaseSeverity | MEDIUM |
| VectorString | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
| Version | NA |
References for CVE-2023-32483 :
https://www.dell.com/support/kbdoc/en-us/000215351/dsa-2023-240-dell-wyse-management-suite
| Metric Type | Metric Score |
|---|---|
| AttackVector(AV) | LOCAL |
| AttackComplexity(AC) | LOW |
| PrivilegesRequired(PR) | HIGH |
| UserInteraction(UI) | NONE |
| Scope(S) | UNCHANGED |
| Confidentiality(C) | HIGH |
| Availability(A) | NONE |
| Integrity(I) | NONE |