CVE 9.8 CRITICAL

CVE-2026-41120_CVE-2026-41120

June 25, 2026 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution.

AI Analysis

Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability, leading to Remote Code Execution

Basic Information

ID CVE-2026-41120

Source dell

Published Jun 25, 2026 at 13:28

Modified Jun 25, 2026 at 14:08

Affected Product

Vendor Dell

Product Wyse Management Suite

Affected Versions Dell Wyse Management Suite 0

CWE Classification

CWE-349

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Dell

Product Wyse Management Suite

Version prior to WMS 5.5 HF1

References

www.dell.com /support/kbdoc/en-in/000465356/dsa-2026-225

{
    "lastseen": "",
    "description": "Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution.",
    "published": "2026-06-25T13:28:53.068Z",
    "modified": "2026-06-25T14:08:22.786Z",
    "type": "cve",
    "title": "CVE-2026-41120",
    "source": "dell",
    "references": "https://www.dell.com/support/kbdoc/en-in/000465356/dsa-2026-225?msockid=3021cac2195069ed3194ddad186a68f9",
    "id": "CVE-2026-41120",
    "bulletinFamily": "",
    "cwe": [
        "CWE-349"
    ],
    "cvelist": null,
    "sourceData": "Dell Wyse Management Suite 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Wyse Management Suite",
    "version": "0",
    "vendor": "Dell",
    "ai_description": "Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability, leading to Remote Code Execution",
    "ai_severity": "Critical",
    "ai_vendor": "Dell",
    "ai_product": "Wyse Management Suite",
    "ai_version": "prior to WMS 5.5 HF1",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply