Medium
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2021- 21552 | Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass the restricted environment and perform unauthorized actions on the affected system. | 5.2 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N |
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2021- 21552 | Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass the restricted environment and perform unauthorized actions on the affected system. | 5.2 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N |
Product | Affected Versions | Updated Versions | Link to Update | |
Dell Wyse 5070 Thin Client |
Versions WIE10 LTSC 2019 and earlier |
Security Update |
|
|
Dell Wyse 5470 Thin Client |
Versions WIE10 LTSC 2019 and earlier |
Security Update |
|
|
Dell Wyse 5470 All-In-One Thin Client |
Versions WIE10 LTSC 2019 and earlier |
Security Update |
||
Product | Affected Versions | Updated Versions | Link to Update | |
Dell Wyse 5070 Thin Client |
Versions WIE10 LTSC 2019 and earlier |
Security Update |
|
|
Dell Wyse 5470 Thin Client |
Versions WIE10 LTSC 2019 and earlier |
Security Update |
|
|
Dell Wyse 5470 All-In-One Thin Client |
Versions WIE10 LTSC 2019 and earlier |
Security Update |
||
Revision | Date | Description |
1.0 | 2021-05-11 | Initial Release |
Dell would like to thank Alessandro Baldini and Alessio D'Anastasio for reporting this issue.