Dell ThinOS 2408 and prior, contains an improper permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.
oryginał ENCVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HDell Latitude 3420
HWDellwszystkie wersjeDell Latitude 3440
HWDellwszystkie wersjeDell Latitude 5440
HWDellwszystkie wersjeDell Latitude 5450
HWDellwszystkie wersjeDell Optiplex 3000 Thin Client
HWDellwszystkie wersjeDell Optiplex 5400 All In One
HWDellwszystkie wersjeDell Optiplex 7410 All In One
HWDellwszystkie wersjeDell Optiplex 7420 All In One
HWDellwszystkie wersjeDell Thinos
OSDell≤ 2408Dell Wyse 5070 Thin Client
HWDellwszystkie wersjeDell Wyse 5470 All In One Thin Client
HWDellwszystkie wersjeDell Wyse 5470 Mobile Thin Client
HWDellwszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2025-43728CRITICAL9.6PL ✓ten sam produkt
Obejście mechanizmu ochrony w Dell ThinOS 10 (Auth Bypass)
CVE-2026-40715HIGH7.8ten sam produkt
Dell ThinOS 10, versions prior to ThinOS10 2602_10.0765, contain an Improper Access Control vulnerability. A l...
CVE-2026-23862HIGH7.8ten sam produkt
Dell ThinOS 10 versions prior to ThinOS 2602_10.0573, contain an Improper Neutralization of Special Elements u...
CVE-2025-43729HIGH7.8ten sam produkt
Dell ThinOS 10, versions prior to 2508_10.0127, contains an Incorrect Permission Assignment for Critical Resou...
CVE-2025-43730HIGH8.4ten sam produkt
Dell ThinOS 10, versions prior to 2508_10.0127, contains an Improper Neutralization of Argument Delimiters in ...