DSA-2021-144: Dell Wyse ThinOS Security Update for Multiple Vulnerabilities
摘要: Dell Wyse ThinOS (9.x) remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.
本文章適用於
本文章不適用於
本文無關於任何特定產品。
本文未識別所有產品版本。
影響
High
詳細資料
| Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
| CVE-2021-21597 | Dell Wyse ThinOS (9.x), version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system may exploit this vulnerability to read sensitive information written to the log files. | 7.2 | CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
| CVE-2021-21598 | Dell Wyse ThinOS (9.x), versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system may exploit this vulnerability to read sensitive Smartcard data in log files. | 3.9 | CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
| Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
| CVE-2021-21597 | Dell Wyse ThinOS (9.x), version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system may exploit this vulnerability to read sensitive information written to the log files. | 7.2 | CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
| CVE-2021-21598 | Dell Wyse ThinOS (9.x), versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system may exploit this vulnerability to read sensitive Smartcard data in log files. | 3.9 | CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
受影響的產品與補救措施
|
|
修訂歷史記錄
| Revision | Date | Description |
| 1.0 | 2021-07-21 | Initial Release |
相關資訊
法律免責聲明
受影響的產品
Product Security Information, Dell ThinOS文章屬性
文章編號: 000189543
文章類型: Dell Security Advisory
上次修改時間: 18 9月 2025
向其他 Dell 使用者尋求您問題的答案
支援服務
檢查您的裝置是否在支援服務的涵蓋範圍內。