Loading...
Loading...
Affected Platforms: OptiPlex 3000 Thin Client Wyse 5070 Thin Client Wyse 5470 mobile Thin Client Wyse 5470 All-in-One Thin Client Wyse 3040 Thin Client Latitude 3420 Latitude 3440 Latitude 5440 OptiPlex 5400 All-in-One OptiPlex 7410 All-in-One Affected Operating Systems: Dell ThinOS After a failed connection attempt, ThinOS 9 customers may raise a security concern when ThinOS performs a network diagnostic function that attempts to connect to an external public server. The same condition can be triggered when using ThinOS integrated Network diagnostic tools ( Troubleshoot > Network > Diagnose ). Customers detected this condition when their internal Firewall software reports client communication attempts to IP 47.100.193.85 or dell1.com when an NTP server is not reachable from the thin client, or when the customer runs a local ThinOS network diagnostic test.
A hard coded URL value intended for www.dell.com was inadvertently defined as www.dell1.com . Note: While a connection to an external public server was made, no data was written to the client that would compromise security or alter ThinOS client behavior.
ThinOS 2306 was released in June 2023 and has addressed this issue. ThinOS 2308 is scheduled to release in August 2023, updates below: Removed other network diagnostic logic in code; kept only network diagnostic logic in Troubleshooting where the user manually triggers the diagnostic. In Troubleshooting > Network > Diagnostic The web access testing is also removed (which required an external URL, for example, www.dell.com) Kept the PING and DNS resolve steps, added message that the user must click Continue Previously, the user had to click Diagnostics Now, the user must click Diagnostics and Continue
Click on a version to see all relevant bugs
Dell Integration
Learn more about where this data comes from
Bug Scrub Advisor
Streamline upgrades with automated vendor bug scrubs
BugZero Enterprise
Wish you caught this bug sooner? Get proactive today.