Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure. The attacker may be able to use exposed credentials to access the system with privileges of the compromised account.
History

Fri, 13 Dec 2024 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Dell
Dell secure Connect Gateway
CPEs cpe:2.3:a:dell:secure_connect_gateway:5.24.00.14:*:*:*:*:*:*:*
Vendors & Products Dell
Dell secure Connect Gateway

Fri, 18 Oct 2024 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 18 Oct 2024 16:45:00 +0000

Type Values Removed Values Added
Description Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure. The attacker may be able to use exposed credentials to access the system with privileges of the compromised account.
Weaknesses CWE-327
References
Metrics cvssV3_1

{'score': 4.6, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published: 2024-10-18T16:34:34.661Z

Updated: 2024-10-18T16:48:27.430Z

Reserved: 2024-10-08T05:40:53.870Z

Link: CVE-2024-48016

cve-icon Vulnrichment

Updated: 2024-10-18T16:48:23.084Z

cve-icon NVD

Status : Analyzed

Published: 2024-10-18T17:15:13.380

Modified: 2024-12-13T15:13:14.883

Link: CVE-2024-48016

cve-icon Redhat

No data.