Exposure of Sensitive System Information in Dell Secure Connect Gateway 5.0 Appliance
CVE-2025-23382

5.8MEDIUM

Key Information:

Vendor: Dell
Status: Secure Connect Gateway (scg) 5.0 Appliance - Srs
Vendor: CVE Published:; 19 March 2025

What is CVE-2025-23382?

The Dell Secure Connect Gateway (SCG) 5.0 Appliance, specifically in version 5.26, is affected by a vulnerability that permits exposure of sensitive system information. This vulnerability could be exploited by a high privileged attacker with remote access capabilities, leading to unauthorized access to crucial system information. Organizations utilizing affected versions should promptly apply available security updates to mitigate the risks associated with this vulnerability.

Affected Version(s)

Secure Connect Gateway (SCG) 5.0 Appliance - SRS 5.26.00.20

References

https://www.dell.com/support/kbdoc/en-uk/000291028/dell-s...

vendor-advisory

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 19, 2025
Vulnerability Reserved
Jan 15, 2025