CVE-2024-24903
Dell Secure Connect Gateway (SCG) Policy Manager, version 5.10+ is affected by a weak password recovery mechanism. An adjacent-network, low-privilege attacker could exploit this flaw to retrieve a reset password token without authorization and change the target account’s password, leading to unau...