CVE-2025-23382

MEDIUM Year: 2025
CVSS v3 Score
5.8
Medium
Weakness Type
CWE-497
View all →

Vulnerability Description

Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.26, contain(s) an Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information exposure.c

Related Vulnerabilities

CVE-2025-46747

MEDIUM
CVSS:5.7(Medium)

An authenticated user without user-management permissions could identify other user accounts.

CWE-4972025

CVE-2024-52321

MEDIUM
CVSS:5.9(Medium)

Multiple SHARP routers contain an improper authentication vulnerability in the configuration backup function. The product's backup files containing sensitive information may be retrieved by a remote u...

CWE-4972024

CVE-2024-6388

MEDIUM
CVSS:5.9(Medium)

Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon, before version 1.12, leaks the Pro token to unprivileged users by passing the token as an argument in plaintext.

CWE-4972024

CVE-2025-0055

MEDIUM
CVSS:6.0(Medium)

SAP GUI for Windows stores user input on the client PC to improve usability. Under very specific circumstances an attacker with administrative privileges or access to the victim�s user directory on th...

CWE-4972025

CVE-2025-0056

MEDIUM
CVSS:6.0(Medium)

SAP GUI for Java saves user input on the client PC to improve usability. An attacker with administrative privileges or access to the victim�s user directory on the Operating System level would be able...

CWE-4972025

CVE-2025-0059

MEDIUM
CVSS:6.0(Medium)

Applications based on SAP GUI for HTML in SAP NetWeaver Application Server ABAP store user input in the local browser storage to improve usability. An attacker with administrative privileges or access...

CWE-4972025