CVE-2022-34402
Severity Score
4.9
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An admin privilege attacker could potentially exploit this vulnerability, leading to denial-of-service.
Dell Wyse ThinOS versión 2205, contiene una vulnerabilidad de Denegación de Servicio por Expresión Regular en la Interfaz de Usuario. Un atacante con privilegios de administrador podría explotar esta vulnerabilidad, conllevando a una denegación de servicio
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-06-23 CVE Reserved
- 2022-10-10 CVE Published
- 2024-04-06 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-1333: Inefficient Regular Expression Complexity
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.dell.com/support/kbdoc/en-us/000203376/dsa-2022-247-dell-wyse-thinos-security-update-for-a-regular-expression-vulnerability | 2023-07-21 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Dell Search vendor "Dell" | Wyse Thinos Search vendor "Dell" for product "Wyse Thinos" | < 9.3.2102 Search vendor "Dell" for product "Wyse Thinos" and version " < 9.3.2102" | - |
Affected
| in | Dell Search vendor "Dell" | Latitude 3420 Search vendor "Dell" for product "Latitude 3420" | - | - |
Safe
|
| Dell Search vendor "Dell" | Wyse Thinos Search vendor "Dell" for product "Wyse Thinos" | < 9.3.2102 Search vendor "Dell" for product "Wyse Thinos" and version " < 9.3.2102" | - |
Affected
| in | Dell Search vendor "Dell" | Optiplex 3000 Thin Client Search vendor "Dell" for product "Optiplex 3000 Thin Client" | - | - |
Safe
|
| Dell Search vendor "Dell" | Wyse Thinos Search vendor "Dell" for product "Wyse Thinos" | < 9.3.2102 Search vendor "Dell" for product "Wyse Thinos" and version " < 9.3.2102" | - |
Affected
| in | Dell Search vendor "Dell" | Wyse 3040 Thin Client Search vendor "Dell" for product "Wyse 3040 Thin Client" | - | - |
Safe
|
| Dell Search vendor "Dell" | Wyse Thinos Search vendor "Dell" for product "Wyse Thinos" | < 9.3.2102 Search vendor "Dell" for product "Wyse Thinos" and version " < 9.3.2102" | - |
Affected
| in | Dell Search vendor "Dell" | Wyse 5070 Thin Client Search vendor "Dell" for product "Wyse 5070 Thin Client" | - | - |
Safe
|
| Dell Search vendor "Dell" | Wyse Thinos Search vendor "Dell" for product "Wyse Thinos" | < 9.3.2102 Search vendor "Dell" for product "Wyse Thinos" and version " < 9.3.2102" | - |
Affected
| in | Dell Search vendor "Dell" | Wyse 5470 All-in-one Thin Client Search vendor "Dell" for product "Wyse 5470 All-in-one Thin Client" | - | - |
Safe
|
| Dell Search vendor "Dell" | Wyse Thinos Search vendor "Dell" for product "Wyse Thinos" | < 9.3.2102 Search vendor "Dell" for product "Wyse Thinos" and version " < 9.3.2102" | - |
Affected
| in | Dell Search vendor "Dell" | Wyse 5470 Mobile Thin Client Search vendor "Dell" for product "Wyse 5470 Mobile Thin Client" | - | - |
Safe
|