First published: Fri Feb 17 2023(Updated: )
Dell Secure Connect Gateway (SCG) version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell Secure Connect Gateway | =5.12.00.10 | |
Dell Secure Connect Gateway | =5.14.00.12 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-23695 is a vulnerability in Dell Secure Connect Gateway (SCG) version 5.14.00.12 that contains a broken cryptographic algorithm.
An attacker can exploit CVE-2023-23695 by performing Man-in-the-Middle (MitM) attacks to obtain sensitive information.
Dell Secure Connect Gateway versions 5.12.00.10 and 5.14.00.12 are affected by CVE-2023-23695.
The severity of CVE-2023-23695 is medium with a CVSS score of 5.9.
To fix CVE-2023-23695, update Dell Secure Connect Gateway to a version that addresses the broken cryptographic algorithm vulnerability.