Dell

Secure Connect Gateway

22 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-29168

  • EPSS 2.49%
  • Veröffentlicht 13.06.2024 15:15:52
  • Zuletzt bearbeitet 21.11.2024 09:07:42

Dell SCG, versions prior to 5.22.00.00, contain a SQL Injection Vulnerability in the SCG UI for an internal assets REST API. A remote authenticated attacker could potentially exploit this vulnerability, leading to the execution of certain SQL command...

5.4

CVE-2024-28968

  • EPSS 1.41%
  • Veröffentlicht 13.06.2024 15:15:51
  • Zuletzt bearbeitet 21.11.2024 09:07:17

Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for internal email and collection settings REST APIs (if enabled by Admin user from UI). A remote low privileged attacker could potentially ex...

5.4

CVE-2024-28967

  • EPSS 1.41%
  • Veröffentlicht 13.06.2024 15:15:51
  • Zuletzt bearbeitet 21.11.2024 09:07:17

Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal maintenance REST API (if enabled by Admin user from UI). A remote low privileged attacker could potentially exploit this vulne...

5.4

CVE-2024-28966

  • EPSS 1.41%
  • Veröffentlicht 13.06.2024 15:15:51
  • Zuletzt bearbeitet 21.11.2024 09:07:17

Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API (if enabled by Admin user from UI). A remote low privileged attacker could potentially exploit this vulnerabil...

5.4

CVE-2024-28965

  • EPSS 1.41%
  • Veröffentlicht 13.06.2024 15:15:51
  • Zuletzt bearbeitet 21.11.2024 09:07:17

Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal enable REST API (if enabled by Admin user from UI). A remote low privileged attacker could potentially exploit this vulnerabil...

5.3

CVE-2024-22458

  • EPSS 0.09%
  • Veröffentlicht 01.03.2024 11:15:07
  • Zuletzt bearbeitet 04.12.2024 17:19:03

Dell Secure Connect Gateway, 5.18, contains an Inadequate Encryption Strength Vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, allowing an attacker to recover plaintext from a block of ciphertext.

8.8

CVE-2024-22457

  • EPSS 0.87%
  • Veröffentlicht 01.03.2024 11:15:07
  • Zuletzt bearbeitet 04.12.2024 17:57:09

Dell Secure Connect Gateway 5.20 contains an improper authentication vulnerability during the SRS to SCG update path. A remote low privileged attacker could potentially exploit this vulnerability, leading to impersonation of the server through presen...

6.5

CVE-2023-44294

  • EPSS 0.31%
  • Veröffentlicht 14.02.2024 09:15:35
  • Zuletzt bearbeitet 21.11.2024 08:25:36

In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern has been identified, where a malicious user with a valid User session may inject malicious content in filters o...

6.5

CVE-2023-44293

  • EPSS 0.31%
  • Veröffentlicht 14.02.2024 08:15:09
  • Zuletzt bearbeitet 21.11.2024 08:25:36

In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern has been identified, where a malicious user with a valid User session may inject malicious content in filters o...

6.5

CVE-2023-28043

  • EPSS 0.1%
  • Veröffentlicht 01.06.2023 16:15:09
  • Zuletzt bearbeitet 21.11.2024 07:54:10

Dell SCG 5.14 contains an information disclosure vulnerability during the SRS to SCG upgrade path. A remote low privileged malicious user could potentially exploit this vulnerability to retrieve the plain text.