CVE-2026-49506
HighCVSS 7.2Exploitation Probability (EPSS)
Low risk42th percentile — higher than 42% of all known CVEs
Summary
Dell Wyse Management Suite versions prior to WMS 5.5 HF1 contain a Path Traversal vulnerability. A high privileged attacker with remote access could exploit this to achieve Remote Code Execution.
Risk Assessment
The risk involves potential server compromise by a privileged attacker, leading to data theft, malware installation, or disruption of IT infrastructure.
Recommendation
Immediately update Dell Wyse Management Suite to version 5.5 HF1 or later, which includes a fix for this vulnerability.
Original NVD description (English source)
Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution.

