CVE-2023-44293

Name of the Vulnerable Software and Affected Versions Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance versions 5.10.00.00 through 5.18.00.00

Description A security concern has been identified where a malicious user with a valid user session may inject malicious content in filters of IP Range Rest API, potentially leading to unintentional information disclosure from the product database.

Recommendations For versions 5.10.00.00 through 5.18.00.00, consider restricting access to the IP Range Rest API until a patch is available. As a temporary workaround, avoid using filters in the IP Range Rest API to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.