183 matches found
CVE-2023-44293
CVE-2023-44293 affects Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (versions 5.10.00.00–5.18.00.00). The root cause is an SQL injection vulnerability in the IP Range Rest API filters, which could allow a malicious user with a valid session to inject content and ca...
CVE-2023-44293
In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance between v5.10.00.00 and v5.18.00.00, a security concern has been identified, where a malicious user with a valid User session may inject malicious content in filters of IP Range Rest API. This issue may potentially le...
The vulnerability of the software for remote IT support and monitoring of Dell Secure Connect Gateway (SCG) arises from the use of cryptographic algorithms that contain defects. This allows attackers to gain unauthorized access to protected information.
The vulnerability of software for remote IT support and monitoring of Dell Secure Connect Gateway SCG is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected...
The vulnerability of the access control tool, Policy Manager, in the software for remote IT support and monitoring provided by Dell Secure Connect Gateway (SCG), allows a perpetrator to increase their privileges.
The vulnerability of the access control mechanism in the Policy Manager software for remote IT support and monitoring in Dell Secure Connect Gateway SCG is related to the use of a strictly encrypted cryptographic key. Exploiting this vulnerability could allow an attacker to increase their...
The vulnerability of the access control tool, Policy Manager, in the software for remote IT support and monitoring provided by Dell Secure Connect Gateway (SCG), allows a perpetrator to increase their privileges.
The vulnerability of the access control mechanism in the Policy Manager software for remote IT support and monitoring in Dell Secure Connect Gateway SCG is related to the use of a strictly encrypted cryptographic key. Exploiting this vulnerability could allow an attacker to increase their...
The vulnerability of the access control tool, Policy Manager, in the software for remote IT support and monitoring provided by Dell Secure Connect Gateway (SCG), allows a perpetrator to increase their privileges.
The vulnerability of the access control mechanism in the Policy Manager software for remote IT support and monitoring in Dell Secure Connect Gateway SCG is related to the use of a strictly encrypted cryptographic key. Exploiting this vulnerability could allow an attacker to increase their...
CVE-2023-23695
Dell Secure Connect Gateway SCG version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information...
Design/Logic Flaw
Dell Secure Connect Gateway SCG version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information...
CVE-2023-23695
Dell Secure Connect Gateway SCG version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information...
CVE-2023-23695
Dell Secure Connect Gateway SCG version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information...
CVE-2023-23695
Dell Secure Connect Gateway (SCG) v5.14.00.12 is affected by a broken cryptographic algorithm vulnerability that could enable remote, unauthenticated MitM attacks to extract sensitive data. This is documented across multiple sources (NVD, PRION, PRION-like entries, PT-2023-6682) and centers on SC...
Dell EMC Secure Connect Gateway 加密问题漏洞
Dell EMC Secure Connect Gateway Dell Emc Scg is a secure connectivity gateway from Dell USA. A security vulnerability exists in Dell EMC Secure Connect Gateway SCG version 5.14.00.12, which stems from the presence of a corrupted encryption algorithm vulnerability that can be exploited by a remote...
PT-2023-6682 · Dell · Dell Secure Connect Gateway
Name of the Vulnerable Software and Affected Versions: Dell Secure Connect Gateway SCG version 5.14.00.12 Description: The issue is related to a broken cryptographic algorithm in the software, which could allow a remote unauthenticated attacker to exploit the vulnerability by performing...
Dell Emc Secure Connect Gateway 日志信息泄露漏洞
Dell Emc Secure Connect Gateway Dell Emc Scg is a secure connectivity gateway from Dell, Inc. The vulnerability can be exploited to read sensitive information...
Threat Advisory: Pulse Secure Connect Coverage
Pulse Secure announced that a critical vulnerability CVE-2021-22893 was discovered in their VPN service "Pulse Secure Connect" in a recent security advisory. The advisory states that, "a vulnerability was discovered under Pulse Connect Secure PCS. This includes an authentication by-pass... This i...
CVE-2020-6653
Eaton's Secure connect mobile app v1.7.3 & prior stores the user login credentials in logcat file when user create or register the account on the Mobile app. A malicious app or unauthorized user can harvest the information and later on can use the information to monitor and control the user's...
CVE-2020-6653
Eaton's Secure connect mobile app v1.7.3 & prior stores the user login credentials in logcat file when user create or register the account on the Mobile app. A malicious app or unauthorized user can harvest the information and later on can use the information to monitor and control the user's...
Information disclosure
Eaton's Secure connect mobile app v1.7.3 & prior stores the user login credentials in logcat file when user create or register the account on the Mobile app. A malicious app or unauthorized user can harvest the information and later on can use the information to monitor and control the user's...
CVE-2020-6653
The CVE-2020-6653 issue affects Eaton’s Secure Connect mobile app (v1.7.3 and earlier). The underlying flaw is that the app stores user login credentials in logcat files during account creation/registration, enabling a malicious app or unauthorized user to harvest those credentials and potentiall...
CVE-2020-6653 Sensitive date stored in logcat file
Eaton's Secure connect mobile app v1.7.3 & prior stores the user login credentials in logcat file when user create or register the account on the Mobile app. A malicious app or unauthorized user can harvest the information and later on can use the information to monitor and control the user's...