CVE-2024-48016

Name of the Vulnerable Software and Affected Versions Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version 5.24

Description The issue is related to the use of a broken or risky cryptographic algorithm, which could be exploited by a low-privileged attacker with remote access, potentially leading to information disclosure. The attacker may use exposed credentials to access the system with the privileges of the compromised account.

Recommendations For version 5.24, patch immediately to address the vulnerability and review encryption practices to ensure the use of secure cryptographic algorithms. As a temporary workaround, consider restricting access to sensitive data and reviewing account privileges to minimize the risk of exploitation.