CVE-2022-34402

MEDIUM

Dell Wyse ThinOS < 9.3.2102 - Authenticated Denial of Service via Regular Expression Complexity

Title source: llm

Description

Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An admin privilege attacker could potentially exploit this vulnerability, leading to denial-of-service.

References (1)

Core 1

Core References

Patch, Vendor Advisory

https://www.dell.com/support/kbdoc/en-us/000203376/dsa-2022-247-dell-wyse-thinos-security-update-for-a-regular-expression-vulnerability

Scores

CVSS v3 6.8

EPSS 0.0060

EPSS Percentile 43.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

Details

CWE

CWE-1333

Status published

Products (1)

dell/wyse_thinos < 9.3.2102

Published Oct 10, 2022

Tracked Since Feb 18, 2026