DSA-2021-144: Dell Wyse ThinOS Security Update for Multiple Vulnerabilities

摘要: Dell Wyse ThinOS (9.x) remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

本文章適用於 本文章不適用於 本文無關於任何特定產品。 本文未識別所有產品版本。

影響

High

詳細資料

Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2021-21597 Dell Wyse ThinOS (9.x), version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system may exploit this vulnerability to read sensitive information written to the log files. 7.2 CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CVE-2021-21598 Dell Wyse ThinOS (9.x), versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system may exploit this vulnerability to read sensitive Smartcard data in log files. 3.9 CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2021-21597 Dell Wyse ThinOS (9.x), version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system may exploit this vulnerability to read sensitive information written to the log files. 7.2 CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CVE-2021-21598 Dell Wyse ThinOS (9.x), versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system may exploit this vulnerability to read sensitive Smartcard data in log files. 3.9 CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Dell Technologies 建議所有客戶不僅要參考 CVSS 基本分數,也要將可能會影響與特定安全漏洞相關之潛在嚴重性的所有相關暫時和環境分數納入考量。

受影響的產品與補救措施

Product Affected Versions Updated versions Link to update
Dell Wyse 3040 Thin Client 9.0, 9.1 9.1 MR3 Dell Wyse 3040 Thin Client
Dell Wyse 3040 Thin Client with PCoIP 9.0, 9.1 9.1 MR3 Dell Wyse 3040 Thin Client with PCoIP
Dell Wyse 5070 Thin Client 9.0, 9.1 9.1 MR3 Dell Wyse 5070 Thin Client
Dell Wyse 5470 Thin Client 9.0, 9.1 9.1 MR3 Dell Wyse 5470 Thin Client
Dell Wyse 5470 All-in-One Thin Client 9.0, 9.1 9.1 MR3 Dell Wyse 5470 All-in-One Thin Client
Dell Wyse 5070 Thin Client with PCoIP 9.0, 9.1 9.1 MR3 Dell Wyse 5070 Thin Client with PCoIP
Dell Wyse 5470 Thin Client with PCoIP 9.0, 9.1 9.1 MR3 Dell Wyse 5470 Thin Client with PCoIP
Dell Wyse 5470 All-in-One Thin Client with PCoIP 9.0, 9.1 9.1 MR3 Dell Wyse 5470 All-in-One Thin Client with PCoIP
Product Affected Versions Updated versions Link to update
Dell Wyse 3040 Thin Client 9.0, 9.1 9.1 MR3 Dell Wyse 3040 Thin Client
Dell Wyse 3040 Thin Client with PCoIP 9.0, 9.1 9.1 MR3 Dell Wyse 3040 Thin Client with PCoIP
Dell Wyse 5070 Thin Client 9.0, 9.1 9.1 MR3 Dell Wyse 5070 Thin Client
Dell Wyse 5470 Thin Client 9.0, 9.1 9.1 MR3 Dell Wyse 5470 Thin Client
Dell Wyse 5470 All-in-One Thin Client 9.0, 9.1 9.1 MR3 Dell Wyse 5470 All-in-One Thin Client
Dell Wyse 5070 Thin Client with PCoIP 9.0, 9.1 9.1 MR3 Dell Wyse 5070 Thin Client with PCoIP
Dell Wyse 5470 Thin Client with PCoIP 9.0, 9.1 9.1 MR3 Dell Wyse 5470 Thin Client with PCoIP
Dell Wyse 5470 All-in-One Thin Client with PCoIP 9.0, 9.1 9.1 MR3 Dell Wyse 5470 All-in-One Thin Client with PCoIP

修訂歷史記錄

RevisionDateDescription
1.02021-07-21Initial Release

相關資訊

受影響的產品

Product Security Information, Dell ThinOS
文章屬性
文章編號: 000189543
文章類型: Dell Security Advisory
上次修改時間: 18 9月 2025
向其他 Dell 使用者尋求您問題的答案
支援服務
檢查您的裝置是否在支援服務的涵蓋範圍內。