PT-2025-44417 · Dell · Dell Secure Connect Gateway (Scg) Policy Manager
Published
2025-10-30
·
Updated
2025-11-10
·
CVE-2025-36592
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Dell Secure Connect Gateway (SCG) Policy Manager versions 5.20 through 5.28
Description
Dell Secure Connect Gateway (SCG) Policy Manager contains an Improper Neutralization of Input During Web Page Generation issue, also known as Cross-site Scripting. A remote, unauthenticated attacker could potentially exploit this, leading to script injection.
Recommendations
Update Dell Secure Connect Gateway (SCG) Policy Manager to a version later than 5.28.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dell Secure Connect Gateway (Scg) Policy Manager