CVE-2024-48016

EPSS 0.1%
Published 18.10.2024 17:15:13
Last modified 13.12.2024 15:13:14
Source security_alert@emc.com
Teams watchlist Login
Open Login

Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure. The attacker may be able to use exposed credentials to access the system with privileges of the compromised account.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Dell ≫ Secure Connect Gateway Version5.24.00.14

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.291

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
security_alert@emc.com	4.6	1.2	3.4	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L

CWE-327 Use of a Broken or Risky Cryptographic Algorithm

The product uses a broken or risky cryptographic algorithm or protocol.

https://www.dell.com/support/kbdoc/en-us/000237211/dsa-2024-407-dell-secure-connect-gateway-security-update-for-multiple-third-party-component-vulnerabilities

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-48016

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-48016

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-48016

EUVD