CVE-2025-36577
published 2025-06-10CVE-2025-36577: Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')…
medium6.1CVSS 3.1
AVNACLPRHUIRSUCHIHAN
Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Script injection.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | wyse_management_suite | < 5.2 | 5.2 |
| dell | wyse_management_suite | >= N/A < 5.2 | 5.2 |