- Description
- Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system could exploit this vulnerability to read sensitive Smartcard data in log files.
- Source
- security_alert@emc.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 3.9
- Impact score
- 3.6
- Exploitability score
- 0.3
- Vector string
- CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
- Severity
- LOW
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
- security_alert@emc.com
- CWE-532
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:dell:wyse_thinos:9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "94BDC02C-C343-4DED-903E-02BC4E6A18F3"
},
{
"criteria": "cpe:2.3:o:dell:wyse_thinos:9.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3EDA9262-D364-4230-817D-45E02E786B7D"
},
{
"criteria": "cpe:2.3:o:dell:wyse_thinos:9.1:mr1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25D1F654-8B0B-486B-9046-21471BD31536"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dell:wyse_3040_thin_client:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "EE7CF2EF-93B1-4026-B923-3E08324245BD"
},
{
"criteria": "cpe:2.3:h:dell:wyse_5070_thin_client:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C1664E2E-057D-4A8F-B8FC-73EC25D48DBC"
},
{
"criteria": "cpe:2.3:h:dell:wyse_5470_thin_client:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A6B87629-2E3A-42E0-97AB-99C444C803D1"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]