Описание
Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain an improper authorization vulnerability. An adjacent network low privileged attacker could potentially exploit this vulnerability, leading to unauthorized devices added to policies. Exploitation may lead to information disclosure and unauthorized access to the system.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.22.00.16 (исключая)
cpe:2.3:a:dell:policy_manager_for_secure_connect_gateway:*:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00085
Низкий
5.8 Medium
CVSS3
7.3 High
CVSS3
Дефекты
CWE-285
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 5.8
github
почти 2 года назад
Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain an improper authorization vulnerability. An adjacent network low privileged attacker could potentially exploit this vulnerability, leading to unauthorized devices added to policies. Exploitation may lead to information disclosure and unauthorized access to the system.
EPSS
Процентиль: 25%
0.00085
Низкий
5.8 Medium
CVSS3
7.3 High
CVSS3
Дефекты
CWE-285
NVD-CWE-noinfo