CVE-2022-34365
published 2022-08-10CVE-2022-34365: WMS 3.7 contains a Path Traversal Vulnerability in Device API. An attacker could potentially exploit this vulnerability, to gain unauthorized read access to…
medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
WMS 3.7 contains a Path Traversal Vulnerability in Device API. An attacker could potentially exploit this vulnerability, to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | wyse_management_suite | < 3.8.0 | 3.8.0 |
| dell | wyse_management_suite | >= unspecified < 3.8 | 3.8 |