Vulnerabilities > Dell > Secure Connect Gateway
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-13 | CVE-2024-28969 | Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18 Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API (if enabled by Admin user from UI). | 4.3 |
| 2024-06-13 | CVE-2024-29168 | Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18 Dell SCG, versions prior to 5.22.00.00, contain a SQL Injection Vulnerability in the SCG UI for an internal assets REST API. | 8.8 |
| 2024-03-01 | CVE-2024-22457 | Unspecified vulnerability in Dell Secure Connect Gateway 5.20.00.10 Dell Secure Connect Gateway 5.20 contains an improper authentication vulnerability during the SRS to SCG update path. | 8.8 |
| 2024-03-01 | CVE-2024-22458 | Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.20.00.10 Dell Secure Connect Gateway, 5.18, contains an Inadequate Encryption Strength Vulnerability. | 5.3 |
| 2024-02-14 | CVE-2023-44294 | Unspecified vulnerability in Dell Secure Connect Gateway In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern has been identified, where a malicious user with a valid User session may inject malicious content in filters of Collection Rest API. | 6.5 |
| 2024-02-14 | CVE-2023-44293 | Unspecified vulnerability in Dell Secure Connect Gateway In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern has been identified, where a malicious user with a valid User session may inject malicious content in filters of IP Range Rest API. This issue may potentially lead to unintentional information disclosure from the product database. | 6.5 |
| 2023-06-01 | CVE-2023-28043 | Unspecified vulnerability in Dell Secure Connect Gateway 5.14.00.16 Dell SCG 5.14 contains an information disclosure vulnerability during the SRS to SCG upgrade path. | 6.5 |
| 2023-02-17 | CVE-2023-23695 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Secure Connect Gateway 5.12.00.10/5.14.00.12 Dell Secure Connect Gateway (SCG) version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. | 5.9 |
| 2021-11-20 | CVE-2021-36340 | Information Exposure Through Log Files vulnerability in Dell Secure Connect Gateway 3.52.10.08/5.00.00.10 Dell EMC SCG 5.00.00.10 and earlier, contain a sensitive information disclosure vulnerability. | 5.5 |