VYPR

Secure Connect Gateway

by Dell

CVEs (33)

  • CVE-2024-28967MedJun 13, 2024
    risk 0.35cvss 5.4epss 0.00

    Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal maintenance REST API (if enabled by Admin user from UI). A remote low privileged attacker could potentially exploit this vulnerability, leading to the…

  • CVE-2024-28966MedJun 13, 2024
    risk 0.35cvss 5.4epss 0.00

    Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API (if enabled by Admin user from UI). A remote low privileged attacker could potentially exploit this vulnerability, leading to the execution…

  • CVE-2024-28965MedJun 13, 2024
    risk 0.35cvss 5.4epss 0.00

    Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal enable REST API (if enabled by Admin user from UI). A remote low privileged attacker could potentially exploit this vulnerability, leading to the execution…

  • CVE-2023-44294MedFeb 14, 2024
    risk 0.35cvss 5.4epss 0.00

    In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern has been identified, where a malicious user with a valid User session may inject malicious content in filters of Collection Rest API. This…

  • CVE-2023-44293MedFeb 14, 2024
    risk 0.35cvss 5.4epss 0.00

    In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern has been identified, where a malicious user with a valid User session may inject malicious content in filters of IP Range Rest API. This…

  • CVE-2026-27101MedApr 1, 2026
    risk 0.31cvss 4.7epss 0.00

    Dell Secure Connect Gateway (SCG) 5.0 Appliance and Application version(s) 5.28.00.xx to 5.32.00.xx, contain(s) an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. A high privileged attacker within the management network could…

  • CVE-2024-48016MedOct 18, 2024
    risk 0.30cvss 4.6epss 0.00

    Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure. The…

  • CVE-2024-28969MedJun 13, 2024
    risk 0.28cvss 4.3epss 0.00

    Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API (if enabled by Admin user from UI). A remote low privileged attacker could potentially exploit this vulnerability, leading to the execution…

  • CVE-2024-22458LowMar 1, 2024
    risk 0.24cvss 3.7epss 0.00

    Dell Secure Connect Gateway, 5.18, contains an Inadequate Encryption Strength Vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, allowing an attacker to recover plaintext from a block of ciphertext.

  • CVE-2024-51539LowFeb 25, 2025
    risk 0.15cvss 2.3epss 0.00

    The Dell Secure Connect Gateway (SCG) Application and Appliance, versions prior to 5.28, contains a SQL injection vulnerability due to improper neutralization of special elements used in an SQL command. This vulnerability can only be exploited locally on the affected system. A…

  • CVE-2025-46696Jan 6, 2026
    risk 0.00cvss epss 0.00

    Dell Secure Connect Gateway (SCG) 5.0 Appliance and Application, version(s) versions 5.26 to 5.30, contain(s) an Execution with Unnecessary Privileges vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation…

  • CVE-2025-36592Oct 30, 2025
    risk 0.00cvss epss 0.00

    Dell Secure Connect Gateway (SCG) Policy Manager, version(s) 5.20. 5.22, 5.24, 5.26, 5.28, contain(s) an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. An unauthenticated attacker with remote access could potentially exploit…

  • CVE-2025-46363Oct 30, 2025
    risk 0.00cvss epss 0.00

    Dell Secure Connect Gateway (SCG) 5.0 Application and Appliance version(s) 5.26.00.00 - 5.30.00.00, contain a Relative Path Traversal vulnerability in the SCG exposed for an internal collection download REST API (if this REST API is enabled by Admin user from UI). A low…

Page 2 of 2