CVE-2024-48016 MEDIUM

CVE-2024-48016

Vendor Dell
Product Secure Connect Gateway (SCG) 5.0 Appliance - SRS
Weakness CWE-327 · Broken crypto
Published October 18, 2024
Last update October 18, 2024

CVSS base score

4.6/10
Attack vector Network
Attack complexity High
Privileges required Low
User interaction Required
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure. The attacker may be able to use exposed credentials to access the system with privileges of the compromised account.

Key dates

02Disclosure timeline

October 18, 2024 CVE published
October 18, 2024 Record updated