Vulnerabilities (CVE)

Filtered by vendor Dell Subscribe
Filtered by product Wyse Device Manager
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-0695 1 Dell 1 Wyse Device Manager 2024-11-21 7.5 HIGH N/A
hagent.exe in Wyse Device Manager (WDM) 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 query that triggers a power-off action.
CVE-2009-0693 1 Dell 1 Wyse Device Manager 2024-11-21 7.5 HIGH N/A
Multiple buffer overflows in Wyse Device Manager (WDM) 4.7.x allow remote attackers to execute arbitrary code via (1) the User-Agent HTTP header to hserver.dll or (2) unspecified input to hagent.exe.