CVE-2026-41120

Summary

Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution.

Affected Software

VendorProductVersion RangeStatus
DellWyse Management Suite0 < Version 5.5 HF1 or lateraffected

Weaknesses

  • CWE-349: CWE-349: Acceptance of Extraneous Untrusted Data With Trusted Data

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References