What is the CVSS score of CVE-2025-36575?

CVE-2025-36575 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N. EPSS exploitation probability: 0.2%.

Which versions of Wyse Management Suite are affected by CVE-2025-36575?

CVE-2025-36575 is a high-severity information disclosure vulnerability (CVSS 7.5) affecting an unspecified product that could expose sensitive organizational data to unauthorized parties.. A patch is available.

How to fix or mitigate CVE-2025-36575?

Within 24 hours: Identify all systems running the affected product and confirm current version. Within 7 days: Obtain and stage the vendor-released patch in a test environment; validate functionality before production deployment. Within 30 days: Deploy patch to all affected production systems and verify successful application across the entire asset inventory.

Wyse Management Suite CVE-2025-36575

EUVD-2025-17753 HIGH

Exposure of Sensitive Information Through Data Queries (CWE-202)

2025-06-10 security_alert@emc.com

Information Disclosure Dell Wyse Management Suite

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

Analysis Updated

Apr 16, 2026 - 06:40 EUVD-patch-fix

executive_summary

Re-analysis Queued

Apr 16, 2026 - 05:29 backfill_euvd_patch

patch_released

Patch available

Apr 16, 2026 - 05:29 EUVD

5.2

EUVD ID Assigned

Mar 14, 2026 - 19:49 euvd

EUVD-2025-17753

Analysis Generated

Mar 14, 2026 - 19:49 vuln.today

CVE Published

Jun 10, 2025 - 18:15 nvd

HIGH 7.5

DescriptionNVD

Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Exposure of Sensitive Information Through Data Queries vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.

AnalysisAI

A information disclosure vulnerability in an Exposure of Sensitive Information (CVSS 7.5). High severity vulnerability requiring prompt remediation.

Technical ContextAI

Vulnerability type: information disclosure. CVSS 7.5 indicates high severity. Affects an Exposure of Sensitive Information.

RemediationAI

Monitor vendor channels for patch availability.

More from same product – last 7 days

CVE-2025-26483 MEDIUM This Month

6.1 May 22

Open redirect vulnerability in Dell PowerFlex Manager 4.6.2 and prior enables unauthenticated remote attackers to craft

CVE-2025-32751 MEDIUM This Month

5.5 May 22

Dell PowerFlex Manager versions 4.6.2 and earlier improperly store sensitive information in a manner accessible to low-p

CVE-2025-32747 MEDIUM This Month

5.3 May 22

Incorrect Privilege Assignment in Dell PowerFlex Manager version 4.6.2 and earlier (both Appliance and Rack form factors

CVE-2025-32749 MEDIUM This Month

5.3 May 22

Directory listing exposure in Dell PowerFlex Manager versions 4.6.2 and earlier allows an attacker to enumerate director

CVE-2025-32745 MEDIUM This Month

4.2 May 22

Improper certificate validation in Dell PowerFlex Manager version 4.6.2 and earlier allows an unauthenticated attacker o

CVE-2025-36575 vulnerability details – vuln.today

Back

Wyse Management Suite CVE-2025-36575

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

More from same product – last 7 days

Share

External POC / Exploit Code