CVE-2022-34441 HIGH

CVE-2022-34441

Vendor Dell

Product Secure Connect Gateway (SCG) Policy Manager

Weakness CWE-321

Published January 11, 2023

Last update April 8, 2025

View on NVD All CVEs

CVSS base score

8.0/10

Attack vector Local

Attack complexity Low

Privileges required None

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

What the vulnerability does

01Description

Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a contain a Hard-coded Cryptographic Key vulnerability. An attacker with the knowledge of the hard-coded sensitive information, could potentially exploit this vulnerability to login to the system to gain admin privileges.

Key dates

02Disclosure timeline

January 11, 2023 CVE published

April 8, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-34441 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/321.html

Related vulnerabilities

Identifiers

CVE CVE-2022-34441

CWE CWE-321

CVSS 8.0 / HIGH

Affected versions