Dell Wyse Proprietary Os (Modern Thinos)
11 CVEs affecting Dell Wyse Proprietary Os (Modern Thinos). Latest disclosed: 2025-03-18. Critical: 0, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-53290 | High | 8.4 | 2024-12-11 | Dell ThinOS version 2408 contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. An unauthenticated atta… |
CVE-2025-27688 | High | 7.8 | 2025-03-18 | Dell ThinOS 2408 and prior, contains an improper permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerab… |
CVE-2025-26331 | High | 7.8 | 2025-03-07 | Dell ThinOS 2411 and prior, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged att… |
CVE-2024-53289 | High | 7.8 | 2024-12-11 | Dell ThinOS version 2408 contains a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability. A low privileged attacker with local access could potentia… |
CVE-2024-42427 | High | 7.6 | 2024-09-10 | Dell ThinOS versions 2402 and 2405, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. An unauthent… |
CVE-2022-34402 | Medium | 6.8 | 2022-10-10 | Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An admin privilege attacker could potentially exploit this vulnerabi… |
CVE-2024-28963 | Medium | 6.2 | 2024-04-24 | Telemetry Dashboard v1.0.0.7 for Dell ThinOS 2402 contains a sensitive information disclosure vulnerability. An unauthenticated user with local access to the d… |
CVE-2024-42423 | Medium | 6.1 | 2024-09-10 | Citrix Workspace App version 23.9.0.24.4 on Dell ThinOS 2311 contains an Incorrect Authorization vulnerability when Citrix CEB is enabled for WebLogin. A local… |
CVE-2023-32455 | Medium | 5.5 | 2023-07-20 | Dell Wyse ThinOS versions prior to 2208 (9.3.2102) contain a sensitive information disclosure vulnerability. An unauthenticated malicious user with local acce… |
CVE-2023-32447 | Medium | 5.5 | 2023-07-20 | Dell Wyse ThinOS versions prior to 2306 (9.4.2103) contain a sensitive information disclosure vulnerability. A malicious user with local access to the device… |
CVE-2023-32446 | Medium | 5.5 | 2023-07-20 | Dell Wyse ThinOS versions prior to 2303 (9.4.1141) contain a sensitive information disclosure vulnerability. An unauthenticated malicious user with local acce… |