cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-42423,https://securityvulnerability.io/vulnerability/CVE-2024-42423,"{""short"":""Citrix Workspace App contains vulnerability""}","Citrix Workspace App version 23.9.0.24.4, when used on Dell ThinOS 2311, is impacted by an Incorrect Authorization vulnerability. This issue arises specifically when Citrix CEB is enabled for WebLogin. It allows local unauthenticated users with minimal privileges to exploit this vulnerability. Consequently, they may bypass existing security measures, leading to unauthorized actions such as information disclosure and tampering with system operations. The consequences of this vulnerability necessitate prompt attention and remediation to safeguard sensitive data and maintain system integrity.",Dell,Wyse Proprietary Os (modern Thinos),7.1,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-09-10T14:55:58.906Z,0
CVE-2024-42427,https://securityvulnerability.io/vulnerability/CVE-2024-42427,Dell ThinOS Command Injection Vulnerability: Unauthorized Elevation of Privileges,"Dell ThinOS versions 2402 and 2405 are affected by a command injection vulnerability. This security issue arises from improper neutralization of special elements used within commands, potentially allowing an unauthenticated attacker with physical access to exploit the vulnerability. Successful exploitation may result in an elevation of privileges, granting the attacker increased access to the affected system.",Dell,Wyse Proprietary Os (modern Thinos),7.6,HIGH,0.0005300000193528831,false,,false,false,false,,,false,false,,2024-09-10T07:39:17.775Z,0
CVE-2024-28963,https://securityvulnerability.io/vulnerability/CVE-2024-28963,Sensitive Information Disclosure Vulnerability in Dell Telemetry Dashboard,Telemetry Dashboard v1.0.0.7 for Dell ThinOS 2402 contains a sensitive information disclosure vulnerability. An unauthenticated user with local access to the device could exploit this vulnerability to read sensitive proxy settings information.,Dell,Wyse Proprietary Os (modern Thinos),5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-04-24T07:54:11.227Z,0
CVE-2023-32447,https://securityvulnerability.io/vulnerability/CVE-2023-32447,Sensitive Information Disclosure in Dell Wyse ThinOS Products,"Dell Wyse ThinOS versions before 2306 (9.4.2103) have a vulnerability that allows a malicious user with local access to the device to read sensitive information stored in log files. This could potentially expose confidential data, making it imperative to update to the latest version to mitigate this risk.",Dell,Wyse Proprietary Os (modern Thinos),5.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-07-20T13:15:00.000Z,0
CVE-2023-32446,https://securityvulnerability.io/vulnerability/CVE-2023-32446,Sensitive Information Disclosure in Dell Wyse ThinOS,"Dell Wyse ThinOS prior to version 2303 (9.4.1141) is affected by a vulnerability that allows an unauthenticated user with local access to access sensitive information through log files. This could enable attackers to obtain confidential data, thereby compromising the security and privacy of the system. For more information, refer to Dell's advisory.",Dell,Wyse Proprietary Os (modern Thinos),5.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-07-20T13:15:00.000Z,0
CVE-2023-32455,https://securityvulnerability.io/vulnerability/CVE-2023-32455,Sensitive Information Disclosure Vulnerability in Dell Wyse ThinOS,"Dell Wyse ThinOS versions released before 2208 (9.3.2102) are susceptible to a vulnerability that allows an unauthenticated user with local access to the device to read sensitive information contained in log files. This exposure poses a significant risk, as it can lead to the unauthorized disclosure of confidential data.",Dell,Wyse Proprietary Os (modern Thinos),5.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-07-20T13:15:00.000Z,0
CVE-2022-34402,https://securityvulnerability.io/vulnerability/CVE-2022-34402,Regular Expression Denial of Service Vulnerability in Dell Wyse ThinOS,"Dell Wyse ThinOS 2205 is affected by a Regular Expression Denial of Service vulnerability in its user interface. This flaw can be exploited by an attacker with admin privileges to induce a denial-of-service, disrupting the operation of the system. It is crucial for users to implement the latest security updates provided by Dell to mitigate this risk.",Dell,Wyse Proprietary Os (modern Thinos),6.8,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2022-10-10T21:15:00.000Z,0
CVE-2021-21532,https://securityvulnerability.io/vulnerability/CVE-2021-21532,,"Dell Wyse ThinOS 8.6 MR9 contains remediation for an improper management server validation vulnerability that could be potentially exploited to redirect a client to an attacker-controlled management server, thus allowing the attacker to change the device configuration or certificate file.",Dell,Wyse Proprietary Os (thinos),5,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2021-04-02T22:15:00.000Z,0
CVE-2020-29492,https://securityvulnerability.io/vulnerability/CVE-2020-29492,,Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to access the writable file and manipulate the configuration of any target specific station.,Dell,Wyse Proprietary Os (thinos),10,CRITICAL,0.0035500000230968,false,,false,false,false,,,false,false,,2021-01-04T22:15:00.000Z,0
CVE-2020-29491,https://securityvulnerability.io/vulnerability/CVE-2020-29491,,"Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to gain access to the sensitive information on the local network, leading to the potential compromise of impacted thin clients.",Dell,Wyse Proprietary Os (thinos),10,CRITICAL,0.0032599999103695154,false,,false,false,false,,,false,false,,2021-01-04T22:15:00.000Z,0