CVE-2025-36574

Vulnerability

Dell Wyse Management Suite (WMS) versions prior to 5.2 contain an Absolute Path Traversal vulnerability in proprietary code. An unauthenticated attacker with remote access can send specially crafted requests to cause the server to read files outside the intended directory, leading to information disclosure and unauthorized access. The vulnerability is assigned CVSSv3.1 score 8.2 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N) [1].

Exploitation

No authentication or user interaction is required. The attacker only needs network access to the WMS management console or API endpoints. By manipulating input parameters (such as file paths or file names) in HTTP requests, the attacker can traverse directories and access arbitrary files on the server filesystem. The attack complexity is low, and no special privileges are needed [1].

Impact

Successful exploitation allows an unauthenticated attacker to read sensitive files (confidential configuration, credentials, or other data) from the server, resulting in high confidentiality impact. The low integrity impact indicates that the attacker may also be able to write or modify limited data, contributing to unauthorized access beyond mere passive reconnaissance [1].

Mitigation

The vulnerability is fixed in Dell Wyse Management Suite version 5.2. Dell strongly recommends upgrading to WMS 5.2 or later to remediate the issue. No workarounds or mitigations for earlier versions have been released. The advisory DSA-2025-226 provides full details [1].