CVE-2026-23858
published 2026-02-24CVE-2026-23858: Dell Wyse Management Suite, versions prior to WMS 5.5, contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')…
medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
Dell Wyse Management Suite, versions prior to WMS 5.5, contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Script Injection.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | wyse_management_suite | < 5.5 | 5.5 |
| dell | wyse_management_suite | >= N/A < 5.5 | 5.5 |