CVE-2024-47240

Name of the Vulnerable Software and Affected Versions Dell Secure Connect Gateway (SCG) version 5.24

Description The issue is related to incorrect default permissions, allowing a local attacker with low privileges to access the file system. This could potentially lead to gaining write access to unauthorized data and causing a version update failure condition.

Recommendations For version 5.24, patch immediately and review permission settings to resolve the issue. As a temporary workaround, consider restricting access to sensitive data and file systems to minimize the risk of exploitation.