Skip to main content

Policy Manager For Secure Connect Gateway

8 CVEs product

Monthly

CVE-2024-37131 CRITICAL Act Now

SCG Policy Manager, all versions, contains an overly permissive Cross-Origin Resource Policy (CORP) vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cors Misconfiguration Policy Manager For Secure Connect Gateway
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2024-24907 HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain(s) a Stored Cross-Site Scripting Vulnerability in the Filters page. Rated high severity (CVSS 7.6), this vulnerability is low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Dell Policy Manager For Secure Connect Gateway
NVD
CVSS 3.1
7.6
EPSS
0.4%
CVE-2024-24905 HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain(s) a Stored Cross-Site Scripting Vulnerability. Rated high severity (CVSS 7.6), this vulnerability is low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Dell Policy Manager For Secure Connect Gateway
NVD
CVSS 3.1
7.6
EPSS
0.4%
CVE-2024-24904 HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain(s) a Stored Cross-Site Scripting Vulnerability. Rated high severity (CVSS 7.6), this vulnerability is low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Dell Policy Manager For Secure Connect Gateway
NVD
CVSS 3.1
7.6
EPSS
0.4%
CVE-2024-24903 HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, version 5.10+, contain a weak password recovery mechanism for forgotten passwords. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity.

Authentication Bypass Dell Policy Manager For Secure Connect Gateway
NVD
CVSS 3.1
8.0
EPSS
0.4%
CVE-2024-24906 HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain(s) a Stored Cross-Site Scripting Vulnerability in Policy page. Rated high severity (CVSS 7.6), this vulnerability is low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Dell Policy Manager For Secure Connect Gateway
NVD
CVSS 3.1
7.6
EPSS
0.4%
CVE-2024-24900 HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain an improper authorization vulnerability. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Authentication Bypass Information Disclosure Dell Policy Manager For Secure Connect Gateway
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2023-39252 MEDIUM PATCH This Month

Dell SCG Policy Manager 5.16.00.14 contains a broken cryptographic algorithm vulnerability. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Dell Policy Manager For Secure Connect Gateway
NVD
CVSS 3.1
5.9
EPSS
0.3%
EPSS 0% CVSS 9.8
CRITICAL Act Now

SCG Policy Manager, all versions, contains an overly permissive Cross-Origin Resource Policy (CORP) vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cors Misconfiguration Policy Manager For Secure Connect Gateway
NVD
EPSS 0% CVSS 7.6
HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain(s) a Stored Cross-Site Scripting Vulnerability in the Filters page. Rated high severity (CVSS 7.6), this vulnerability is low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Dell +1
NVD
EPSS 0% CVSS 7.6
HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain(s) a Stored Cross-Site Scripting Vulnerability. Rated high severity (CVSS 7.6), this vulnerability is low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Dell +1
NVD
EPSS 0% CVSS 7.6
HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain(s) a Stored Cross-Site Scripting Vulnerability. Rated high severity (CVSS 7.6), this vulnerability is low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Dell +1
NVD
EPSS 0% CVSS 8.0
HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, version 5.10+, contain a weak password recovery mechanism for forgotten passwords. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity.

Authentication Bypass Dell Policy Manager For Secure Connect Gateway
NVD
EPSS 0% CVSS 7.6
HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain(s) a Stored Cross-Site Scripting Vulnerability in Policy page. Rated high severity (CVSS 7.6), this vulnerability is low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Dell +1
NVD
EPSS 0% CVSS 7.3
HIGH PATCH This Week

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain an improper authorization vulnerability. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Authentication Bypass Information Disclosure Dell +1
NVD
EPSS 0% CVSS 5.9
MEDIUM PATCH This Month

Dell SCG Policy Manager 5.16.00.14 contains a broken cryptographic algorithm vulnerability. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Dell Policy Manager For Secure Connect Gateway
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy