176 matches found
Dell Secure Connect Gateway Path Traversal Vulnerability
The Dell Secure Connect Gateway Dell SCG is a secure connectivity gateway from Dell, USA. A path traversal vulnerability exists in Dell Secure Connect Gateway. The vulnerability stems from the program failing to properly filter for specific elements in a resource or file path, which could be...
CVE-2026-27101
Dell Secure Connect Gateway SCG 5.0 Appliance and Application versions 5.28.00.xx to 5.32.00.xx, contains an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability. A high privileged attacker within the management network could potentially exploit this...
CVE-2026-27101
Dell Secure Connect Gateway SCG 5.0 Appliance and Application versions 5.28.00.xx to 5.32.00.xx, contains an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability. A high privileged attacker within the management network could potentially exploit this...
CVE-2026-27101
Dell Secure Connect Gateway SCG 5.0 Appliance and Application versions 5.28.00.xx to 5.32.00.xx, contains an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability. A high privileged attacker within the management network could potentially exploit this...
CVE-2026-27101
Dell Secure Connect Gateway (SCG) 5.0 Appliance and Application versions 5.28.00.xx–5.32.00.xx suffer an improper pathname restriction (path traversal) vulnerability. Root cause: insufficient validation of pathnames leading to restricted directories. Impact: potential remote code execution by a h...
CVE-2026-27101
Dell Secure Connect Gateway SCG 5.0 Appliance and Application versions 5.28.00.xx to 5.32.00.xx, contains an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability. A high privileged attacker within the management network could potentially exploit this...
PT-2026-29478
Dell Secure Connect Gateway SCG 5.0 Appliance and Application versions 5.28.00.xx to 5.32.00.xx, contains an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability. A high privileged attacker within the management network could potentially exploit this...
CVE-2025-41765
Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the wwwupload.cgi endpoint to upload and apply arbitrary data. This includes, but is not limited to, contact images, HTTPS certificates, system backups for restoration, server peer configurations, and...
CVE-2025-41765
Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the wwwupload.cgi endpoint to upload and apply arbitrary data. This includes, but is not limited to, contact images, HTTPS certificates, system backups for restoration, server peer configurations, and...
CVE-2025-46696
Dell Secure Connect Gateway SCG 5.0 Appliance and Application, versions versions 5.26 to 5.30, contains an Execution with Unnecessary Privileges vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...
CVE-2025-46696
Dell Secure Connect Gateway SCG 5.0 Appliance and Application, versions versions 5.26 to 5.30, contains an Execution with Unnecessary Privileges vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...
CVE-2025-46696
Summary: CVE-2025-46696 affects Dell Secure Connect Gateway (SCG) 5.0 Appliance and Application, versions 5.26–5.30, with an Execution with Unnecessary Privileges flaw that could enable Local Privilege Escalation by a high-privilege attacker with local access. Publicly reported details specify a ...
Dell Secure Connect Gateway 安全漏洞
Dell Secure Connect Gateway Dell SCG is a secure connect gateway from Dell USA. A security vulnerability exists in Dell Secure Connect Gateway versions 5.26 through 5.30, which originates from execution with unnecessary privileges and could result in elevated privileges...
PT-2026-1437
Name of the Vulnerable Software and Affected Versions Dell Secure Connect Gateway versions 5.26 through 5.30 Description Dell Secure Connect Gateway SCG 5.0 Appliance and Application contains an Execution with Unnecessary Privileges issue. A local attacker with high privileges could potentially...
DELL Secure Connect Gateway Policy Manager Cross-Site Scripting Vulnerability
DELL Secure Connect Gateway Policy Manager is a Secure Connect Gateway management tool from Dell that is used to configure and manage security policies for SecureConnectGateway SCG devices. A cross-site scripting vulnerability exists in DELL Secure Connect Gateway Policy Manager that originates...
Dell Secure Connect Gateway Relative Path Traversal Vulnerability
Dell Secure Connect Gateway is an enterprise-grade secure connectivity gateway appliance from Dell that is used to monitor hardware status, automate the creation of support requests, and securely communicate to safeguard device connectivity to Dell backend services. A relative path traversal...
CVE-2025-36592
Dell Secure Connect Gateway SCG Policy Manager, versions 5.20. 5.22, 5.24, 5.26, 5.28, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading...
CVE-2025-46363
Dell Secure Connect Gateway SCG 5.0 Application and Appliance versions 5.26.00.00 - 5.30.00.00, contain a Relative Path Traversal vulnerability in the SCG exposed for an internal collection download REST API if this REST API is enabled by Admin user from UI. A low privileged attacker with remote...
CVE-2025-36592
Dell Secure Connect Gateway SCG Policy Manager, versions 5.20. 5.22, 5.24, 5.26, 5.28, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading...
CVE-2025-46363
Dell Secure Connect Gateway SCG 5.0 Application and Appliance versions 5.26.00.00 - 5.30.00.00, contain a Relative Path Traversal vulnerability in the SCG exposed for an internal collection download REST API if this REST API is enabled by Admin user from UI. A low privileged attacker with remote...