5.5

CVE-2025-26475

EPSS 0.1%
Veröffentlicht 19.03.2025 15:13:52
Zuletzt bearbeitet 20.05.2025 18:01:18
Quelle security_alert@emc.com
CVE-Watchlists
Login
Unerledigt
Login

Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.26, Enables Live-Restore setting which enhances security by keeping containers running during daemon restarts, reducing attack exposure, preventing accidental misconfigurations, and ensuring security controls remain active.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Dell ≫ Secure Connect Gateway Version5.26.00.20 SwEditionvirtual

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.1%	0.279

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.3	3.7	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
security_alert@emc.com	5.5	1.3	3.7	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

https://www.dell.com/support/kbdoc/en-uk/000291028/dell-secure-connect-gateway-security-update-for-multiple-third-party-component-vulnerabilities

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-26475

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-26475

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-26475

EUVD