Lucene search
DellCVE-2024-28963HistoryApr 24, 2024 - 8:15 a.m.
CVE-2024-28963
2024-04-2408:15:37
CWE-200
dell
web.nvd.nist.gov
30
telemetry
dashboard
dell thinos 2402
information disclosure
vulnerability
unauthenticated user
local access
proxy settings.
CVSS3
6.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
6
Confidence
Low
EPSS
0
Percentile
9.0%
Telemetry Dashboard v1.0.0.7 for Dell ThinOS 2402 contains a sensitive information disclosure vulnerability. An unauthenticated user with local access to the device could exploit this vulnerability to read sensitive proxy settings information.
Affected configurations
Node
dellwyse_thinosRange≤1.0.0.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| dell | wyse_thinos | * | cpe:2.3:o:dell:wyse_thinos:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Wyse Proprietary OS (Modern ThinOS)",
"vendor": "Dell",
"versions": [
{
"lessThanOrEqual": "1.0.0.7",
"status": "affected",
"version": "N/A",
"versionType": "semver"
}
]
}
]Related
cvelist
cvelist
CVE-2024-28963
2024-04-24 07:54:11
nvd
nvd
CVE-2024-28963
2024-04-24 08:15:37
vulnrichment
vulnrichment
CVE-2024-28963
2024-04-24 07:54:11
CVSS3
6.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
6
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-28963