CVE-2022-29097

Summary

Dell WMS 3.6.1 and below contains a Path Traversal vulnerability in Device API. A remote attacker could potentially exploit this vulnerability, to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.

Affected Software

VendorProductVersion RangeStatus
DellWyse Management Suiteunspecified < 3.6.1affected

Weaknesses

  • CWE-23: CWE-23: Relative Path Traversal

ADP Enrichment

CVE Program Container

Additional References

References