CVE 8.8 HIGH

CVE-2026-44272_CVE-2026-44272

June 22, 2026 invoker category_cve

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.

AI Analysis

SQL Injection vulnerability in Dell Wyse Management Suite (WMS) allowing unauthorized access

Basic Information

ID CVE-2026-44272

Source dell

Published Jun 22, 2026 at 18:56

Affected Product

Vendor Dell

Product Wyse Management Suite (WMS)

Affected Versions Dell Wyse Management Suite (WMS) 0

CWE Classification

CWE-89

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Dell

Product Wyse Management Suite (WMS)

Version prior to WMS 2605

References

www.dell.com /support/kbdoc/en-us/000472001/dsa-2026-247

{
    "lastseen": "",
    "description": "Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.",
    "published": "2026-06-22T18:56:59.066Z",
    "modified": "2026-06-22T18:56:59.066Z",
    "type": "cve",
    "title": "CVE-2026-44272",
    "source": "dell",
    "references": "https://www.dell.com/support/kbdoc/en-us/000472001/dsa-2026-247",
    "id": "CVE-2026-44272",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "Dell Wyse Management Suite (WMS) 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Wyse Management Suite (WMS)",
    "version": "0",
    "vendor": "Dell",
    "ai_description": "SQL Injection vulnerability in Dell Wyse Management Suite (WMS) allowing unauthorized access",
    "ai_severity": "High",
    "ai_vendor": "Dell",
    "ai_product": "Wyse Management Suite (WMS)",
    "ai_version": "prior to WMS 2605",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply