Dell Thinos 10 vulnerabilities

5 known vulnerabilities affecting dell/thinos_10.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH4

Vulnerabilities

Page 1 of 1
CVE-2026-23862HIGHCVSS 7.8fixed in 2602_10.0573_T102026-03-16
CVE-2026-23862 [HIGH] CWE-77 CVE-2026-23862: Dell ThinOS 10 versions prior to ThinOS 2602_10.0573, contain an Improper Neutralization of Special Dell ThinOS 10 versions prior to ThinOS 2602_10.0573, contain an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.
nvd
CVE-2025-43728CRITICALCVSS 9.8≥ N/A, < 2508_10.01272025-08-27
CVE-2025-43728 [CRITICAL] CWE-693 CVE-2025-43728: Dell ThinOS 10, versions prior to 2508_10.0127, contain a Protection Mechanism Failure vulnerability Dell ThinOS 10, versions prior to 2508_10.0127, contain a Protection Mechanism Failure vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Protection mechanism bypass.
nvd
CVE-2025-43882HIGHCVSS 7.8≥ N/A, < 2508_10.01272025-08-27
CVE-2025-43882 [HIGH] CWE-283 CVE-2025-43882: Dell ThinOS 10, versions prior to 2508_10.0127, contains an Unverified Ownership vulnerability. A lo Dell ThinOS 10, versions prior to 2508_10.0127, contains an Unverified Ownership vulnerability. A local low-privileged attacker could potentially exploit this vulnerability leading to Unauthorized Access.
nvd
CVE-2025-43729HIGHCVSS 7.8≥ N/A, < 2508_10.01272025-08-27
CVE-2025-43729 [HIGH] CWE-732 CVE-2025-43729: Dell ThinOS 10, versions prior to 2508_10.0127, contains an Incorrect Permission Assignment for Crit Dell ThinOS 10, versions prior to 2508_10.0127, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A local low-privileged attacker could potentially exploit this vulnerability leading to Elevation of Privileges and Unauthorized Access.
nvd
CVE-2025-43730HIGHCVSS 7.8≥ N/A, < 2508_10.01272025-08-27
CVE-2025-43730 [HIGH] CWE-88 CVE-2025-43730: Dell ThinOS 10, versions prior to 2508_10.0127, contains an Improper Neutralization of Argument Deli Dell ThinOS 10, versions prior to 2508_10.0127, contains an Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability. A local unauthenticated user could potentially exploit this vulnerability leading to Elevation of Privileges and Information disclosure.
nvd