How severe is CVE-2024-37131?

CVE-2024-37131 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-37131

Name: policy_manager_for_secure_connect_gateway
Author: dell

7.5HIGH

SCG Policy Manager, all versions, contains an overly permissive Cross-Origin Resource Policy (CORP) vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leadi

公開日: 6/13/2024更新日: 5/20/2025

説明

SCG Policy Manager, all versions, contains an overly permissive Cross-Origin Resource Policy (CORP) vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of malicious actions on the application in the context of the authenticated user.

AI分析AIによる分析

影響を受ける製品

dellpolicy_manager_for_secure_connect_gateway

参照

https://www.dell.com/support/kbdoc/en-us/000225956/dsa-2024-254-security-update-for-dell-secure-connect-gateway-policy-manager-vulnerabilities
Vendor Advisory
https://www.dell.com/support/kbdoc/en-us/000225956/dsa-2024-254-security-update-for-dell-secure-connect-gateway-policy-manager-vulnerabilities
Vendor Advisory