Dell Secure Connect Gateway — known CVE vulnerabilities
Every CVE whose affected-product data names Dell Secure Connect Gateway, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (23)
CVE-2021-36340 — CVSS 7.8 (high): Dell EMC SCG 5.00.00.10 and earlier, contain a sensitive information disclosure vulnerability. A local malicious user may exploit this…
CVE-2024-22457 — CVSS 7.1 (high): Dell Secure Connect Gateway 5.20 contains an improper authentication vulnerability during the SRS to SCG update path. A remote low…
CVE-2023-28043 — CVSS 6.5 (medium): Dell SCG 5.14 contains an information disclosure vulnerability during the SRS to SCG upgrade path. A remote low privileged malicious user…
CVE-2025-46696 — CVSS 6.4 (medium): Dell Secure Connect Gateway (SCG) 5.0 Appliance and Application, version(s) versions 5.26 to 5.30, contain(s) an Execution with Unnecessary…
CVE-2023-23695 — CVSS 5.9 (medium): Dell Secure Connect Gateway (SCG) version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated…
CVE-2025-23382 — CVSS 5.5 (medium): Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.26, contain(s) an Exposure of Sensitive System Information to an…
CVE-2024-47240 — CVSS 5.5 (medium): Dell Secure Connect Gateway (SCG) 5.24 contains an Incorrect Default Permissions vulnerability. A local attacker with low privileges can…
CVE-2024-28967 — CVSS 5.4 (medium): Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal maintenance…
CVE-2024-28968 — CVSS 5.4 (medium): Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for internal email and…
CVE-2023-44293 — CVSS 5.4 (medium): In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern…
CVE-2024-29168 — CVSS 5.4 (medium): Dell SCG, versions prior to 5.22.00.00, contain a SQL Injection Vulnerability in the SCG UI for an internal assets REST API. A remote…
CVE-2024-29169 — CVSS 5.4 (medium): Dell SCG, versions prior to 5.22.00.00, contain a SQL Injection Vulnerability in the SCG UI for an internal audit REST API. A remote…
CVE-2023-44294 — CVSS 5.4 (medium): In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern…
CVE-2024-28965 — CVSS 5.4 (medium): Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal enable REST API…
CVE-2024-28966 — CVSS 5.4 (medium): Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API…
CVE-2026-27101 — CVSS 4.7 (medium): Dell Secure Connect Gateway (SCG) 5.0 Appliance and Application version(s) 5.28.00.xx to 5.32.00.xx, contain(s) an Improper Limitation of a…
CVE-2024-48016 — CVSS 4.6 (medium): Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains a Use of a Broken or Risky Cryptographic Algorithm…
CVE-2024-28969 — CVSS 4.3 (medium): Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API…
CVE-2024-51539 — CVSS 2.3 (low): The Dell Secure Connect Gateway (SCG) Application and Appliance, versions prior to 5.28, contains a SQL injection vulnerability due to…