Vulnerability intelligence

CVE-2026-49506

Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution.

CVSS Score

7.2

High

EPSS — Exploit Probability

0.5%

Riskier than 42% of all CVEs

Exploitation

Not in CISA KEV

No federal exploitation record

Remediation

Patch available

Vendor fix published

NVD entry Vendor patch PoC / advisory

1 article across 1 outlet · first covered Jun 29, 2026 · latest Jun 29, 2026

Coverage timeline

Critical Dell Wyse bug (CVE-2026-41120) lets attackers run code
securityonline.info · Jun 29, 2026