What is CVE-2022-23156?

CVE-2022-23156 is a medium-severity vulnerability in Dell Wyse Device Agent. CVSS score: 6.0/10. Published 2022-04-01.

How severe is CVE-2022-23156?

Medium severity. CVSS v3 base score is 6.0 out of 10.

Vulnerability in Dell Wyse Device Agent

CVE-2022-23156

Wyse Device Agent version 14.6.1.4 and below contain an Improper Authentication vulnerability. A malicious user could potentially exploit this vulnerability by providing invalid input in order to obtain a connection to WMS server.

EPSS: 0.000 (13.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.0 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N.

Affected products

Dell Wyse Device Agent — versions unspecified

References

www.dell.com/support/kbdoc/000196005 (x_refsource_MISC)

Frequently asked questions

What is CVE-2022-23156?: CVE-2022-23156 is a medium-severity vulnerability in Dell Wyse Device Agent. CVSS score: 6.0/10. Published 2022-04-01.
How severe is CVE-2022-23156?: Medium severity. CVSS v3 base score is 6.0 out of 10.