Execution with Unnecessary Privileges in Dell Secure Connect Gateway 5.0 Appliance
CVE-2025-46696

6.4MEDIUM

Key Information:

Vendor: Dell
Status: Secure Connect Gateway (scg) Appliance; Secure Connect Gateway (scg) Application
Vendor: CVE Published:; 6 January 2026

What is CVE-2025-46696?

The Dell Secure Connect Gateway 5.0 Appliance and its associated application, specifically versions 5.26 to 5.30, are susceptible to an execution vulnerability that grants unnecessary privileges. This flaw allows an attacker with local access to gain elevated privileges, potentially compromising system integrity and confidentiality. It's imperative for users of these versions to apply the recommended security updates to safeguard against exploitation.

Affected Version(s)

Secure Connect Gateway (SCG) Appliance < 5.32.00.20

Secure Connect Gateway (SCG) Application 5.26.00 < 5.32.00

References

https://www.dell.com/support/kbdoc/en-us/000385230/dsa-20...

vendor-advisory

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 6, 2026
Vulnerability Reserved
Apr 28, 2025

Credit

Dell would like to thank Ahmed Y. Elmogy for reporting this issue.

JSON