How severe is CVE-2024-37131?

CVE-2024-37131 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-37131

Name: policy_manager_for_secure_connect_gateway
Author: dell

7.5HIGH

SCG Policy Manager, all versions, contains an overly permissive Cross-Origin Resource Policy (CORP) vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leadi

Published: 6/13/2024Updated: 5/20/2025

Description

SCG Policy Manager, all versions, contains an overly permissive Cross-Origin Resource Policy (CORP) vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of malicious actions on the application in the context of the authenticated user.

AI AnalysisPowered by AI

Affected Products

dellpolicy_manager_for_secure_connect_gateway

References

https://www.dell.com/support/kbdoc/en-us/000225956/dsa-2024-254-security-update-for-dell-secure-connect-gateway-policy-manager-vulnerabilities
Vendor Advisory
https://www.dell.com/support/kbdoc/en-us/000225956/dsa-2024-254-security-update-for-dell-secure-connect-gateway-policy-manager-vulnerabilities
Vendor Advisory