How to fix CVE-2025-36575?

Within 24 hours: Inventory all Dell Wyse Management Suite deployments and document current versions; restrict network access to the management console to authorized personnel only via firewall rules. Within 7 days: Implement network segmentation to isolate WMS infrastructure from untrusted networks; enable detailed access logging and monitor for suspicious query patterns. Within 30 days: Upgrade all instances to version 5.2 or later once available; conduct forensic review of access logs to identify potential exploitation.

Is Wyse Management Suite affected by CVE-2025-36575?

Dell Wyse Management Suite versions before 5.2 expose sensitive information to unauthenticated remote attackers, potentially compromising credentials, configuration data, and system details without requiring user interaction.

CVE-2025-36575

EUVD-2025-17753 HIGH

2025-06-10 [email protected]

7.5

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 14, 2026 - 19:49 vuln.today

EUVD ID Assigned

Mar 14, 2026 - 19:49 euvd

EUVD-2025-17753

CVE Published

Jun 10, 2025 - 18:15 nvd

HIGH 7.5

Description

Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Exposure of Sensitive Information Through Data Queries vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.

Analysis

A information disclosure vulnerability in an Exposure of Sensitive Information (CVSS 7.5). High severity vulnerability requiring prompt remediation.

Technical Context

Vulnerability type: information disclosure. CVSS 7.5 indicates high severity. Affects an Exposure of Sensitive Information.

Affected Products

['an Exposure of Sensitive Information']

Remediation

Monitor vendor channels for patch availability.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.2

CVSS: +38

POC: 0

CVE-2025-36575 vulnerability details – vuln.today

Back

CVE-2025-36575

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

CVE-2025-36575

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code