PatchSiren cyber security CVE debrief
CVE-2026-44273 Dell CVE debrief
CVE-2026-44273 is a Use of Default Credentials vulnerability in Dell Wyse Management Suite (WMS) versions prior to WMS 2605. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information Disclosure. The vulnerability has a CVSS score of 6 and a severity of MEDIUM. Dell has provided a vendor advisory for mitigation. The CVE was published on 2026-06-22T20:16:29.350Z and modified on 2026-06-26T19:13:21.130Z.
- Vendor
- Dell
- Product
- Wyse Management Suite
- CVSS
- MEDIUM 6
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-22
- Original CVE updated
- 2026-06-26
- Advisory published
- 2026-06-22
- Advisory updated
- 2026-06-26
Who should care
System administrators and security teams responsible for Dell Wyse Management Suite (WMS) should be aware of this vulnerability and take necessary steps to mitigate it. This vulnerability requires local access and high privileges to exploit, but could lead to Information Disclosure. Dell Wyse Management Suite users should review their systems and apply the necessary patches.
Technical summary
The CVE-2026-44273 vulnerability is caused by the use of default credentials in Dell Wyse Management Suite (WMS) versions prior to WMS 2605. An attacker with high privileges and local access could exploit this vulnerability to gain unauthorized access to sensitive information. The vulnerability is characterized by a CVSS vector of CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N. Dell has released a vendor advisory (DSA-2026-247) to address this issue.
Defensive priority
Medium priority should be given to patching Dell Wyse Management Suite (WMS) versions prior to WMS 2605, as the vulnerability requires high privileges and local access but could lead to Information Disclosure. System administrators should review their systems and apply the necessary patches.
Recommended defensive actions
- Review and apply Dell's vendor advisory (DSA-2026-247) to patch vulnerable systems.
- Ensure that Dell Wyse Management Suite (WMS) is updated to version 2605 or later.
- Monitor systems for suspicious activity and implement compensating controls as needed.
- Perform regular security audits to identify and address potential vulnerabilities.
- Implement secure authentication and authorization mechanisms to prevent unauthorized access.
Evidence notes
The CVE-2026-44273 vulnerability was identified in Dell Wyse Management Suite (WMS) versions prior to WMS 2605. The vulnerability allows high privileged attackers with local access to potentially exploit the vulnerability, leading to Information Disclosure. The CVSS score is 6, and the severity is MEDIUM. Dell has provided a vendor advisory for mitigation.
Official resources
-
CVE-2026-44273 CVE record
CVE.org
-
CVE-2026-44273 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
This article is AI-assisted and based on the supplied source corpus.