CVE-2024-24900

CVSS 3.1 Score 5.8 of 10 (medium)

Details

Published Mar 1, 2024

CWE ID 285

Summary

CVE-2024-24900 is a newly disclosed vulnerability affecting Dell Secure Connect Gateway (SCG) Policy Manager. This issue involves inadequate authorization controls, allowing a low-privileged adjacent network attacker to potentially add unauthorized devices to policies. The exploitation of this vulnerability could result in significant consequences, including information disclosure and unauthorized access to the system. It is recommended that users update their Dell SCG Policy Manager software to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uXU5-L
https://www.cve.org/CVERecord?id=CVE-2024-24900
https://nvd.nist.gov/vuln/detail/CVE-2024-24900

Back to Vulnerability Database

CVE-2024-24900

CVSS 3.1 Score 5.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations