cvedb.io
CVE-2019-3712
HIGH · CVSS 8.2
EPSS exploitation probability: 0%
Published 2019-03-07T18:29:00.320 · Last modified 2026-06-17T02:35:26.103

Summary

Dell WES Wyse Device Agent versions prior to 14.1.2.9 and Dell Wyse ThinLinux HAgent versions prior to 5.4.55 00.10 contain a buffer overflow vulnerability. An unauthenticated attacker may potentially exploit this vulnerability to execute arbitrary code on the system with privileges of the FTP client by sending specially crafted input data to the affected system. The FTP code that contained the vulnerability has been removed.

Affected products

dell — windows_embedded_standard_wyse_device_agent

Does this affect you?

Add your gear to cvedb and we'll alert you only when dell ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.