CVE-2023-44294

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Feb 14, 2024

CWE ID 89

Summary

CVE-2023-44294 is a security vulnerability affecting Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance versions between 5.10.00.00 and 5.18.00.00. A malicious user with a valid session can inject malicious content into the filters of the Collection Rest API, potentially leading to unintended information disclosure from the product database. This issue poses a risk for sensitive data exposure. Dell urges users to install the latest software updates to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s0dgLi
https://www.cve.org/CVERecord?id=CVE-2023-44294
https://nvd.nist.gov/vuln/detail/CVE-2023-44294

Back to Vulnerability Database

CVE-2023-44294

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations