DSA-2025-249: Security Update for Dell Secure Connect Gateway Policy Manager Multiple Third-Party Component Vulnerabilities.

Resumen: Dell Secure Connect Gateway Policy Manager contains remediation for multiple vulnerabilities that could be exploited by malicious users to compromise the affected system.

Este artículo se aplica a: Este artículo no se aplica a: Este artículo no está vinculado a ningún producto específico. En este artículo no se identifican todas las versiones de los productos.
Consultar otros recursos

Impacto

High

Detalles

Third-Party Component CVEs More information
Java CVE-2024-47606, CVE-2024-54534, CVE-2025-21587, CVE-2025-30698, CVE-2025-30691 https://nvd.nist.gov/vuln/searchThis hyperlink is taking you to a website outside of Dell Technologies.
SUSE Enterprise 12 SP5 CVE-2020-15778, CVE-2024-10979, CVE-2025-26465, CVE-2025-32728 https://nvd.nist.gov/vuln/searchThis hyperlink is taking you to a website outside of Dell Technologies.
Apache Tomcat CVE-2025-24813, CVE-2025-31650, CVE-2025-31651, CVE-2025-46701, CVE-2025-48988, CVE-2025-49125 https://nvd.nist.gov/vuln/searchThis hyperlink is taking you to a website outside of Dell Technologies.
Spring Framework and Related CVE-2024-57699, CVE-2025-22233, CVE-2025-22228, CVE-2025-22234, CVE-2025-41232 https://nvd.nist.gov/vuln/searchThis hyperlink is taking you to a website outside of Dell Technologies.
Other CVE-2025-27820, CVE-2025-48734 https://nvd.nist.gov/vuln/searchThis hyperlink is taking you to a website outside of Dell Technologies.

 

Dell Technologies recomienda que todos los clientes tengan en cuenta la puntuación base CVSS y las puntuaciones temporales o de entorno relevantes que puedan afectar a la posible gravedad asociada a una determinada vulnerabilidad de seguridad.

Productos afectados y corrección

CVEs Addressed Product Affected Versions Updated Version Link to Update
CVE-2020-15778, CVE-2024-10979, CVE-2024-47606, CVE-2024-54534, CVE-2024-57699, CVE-2025-21587, CVE-2025-22228, CVE-2025-22233, CVE-2025-22234, CVE-2025-24813, CVE-2025-26465, CVE-2025-26465, CVE-2025-27820, CVE-2025-30691, CVE-2025-30698, CVE-2025-31650, CVE-2025-32728, CVE-2025-41232, CVE-2025-46701, CVE-2025-48734, CVE-2025-48988, CVE-2025-49125 Dell Policy Manager for Secure Connect Gateway Versions prior to 5.28.00.14 Version 5.30.00.14 or later https://www.dell.com/support/home/product-support/product/secure-connect-gateway-ve/drivers

 

CVEs Addressed Product Affected Versions Updated Version Link to Update
CVE-2020-15778, CVE-2024-10979, CVE-2024-47606, CVE-2024-54534, CVE-2024-57699, CVE-2025-21587, CVE-2025-22228, CVE-2025-22233, CVE-2025-22234, CVE-2025-24813, CVE-2025-26465, CVE-2025-26465, CVE-2025-27820, CVE-2025-30691, CVE-2025-30698, CVE-2025-31650, CVE-2025-32728, CVE-2025-41232, CVE-2025-46701, CVE-2025-48734, CVE-2025-48988, CVE-2025-49125 Dell Policy Manager for Secure Connect Gateway Versions prior to 5.28.00.14 Version 5.30.00.14 or later https://www.dell.com/support/home/product-support/product/secure-connect-gateway-ve/drivers

 

Historial de revisiones

RevisionDateDescription
1.02025-06-23Initial Release
2.02025-07-08Updated the category section
3.02025-07-23Updated the category section

 

Información relacionada

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Aviso legal

Productos afectados

Secure Connect Gateway, Secure Connect Gateway - Application Edition, Secure Connect Gateway - Virtual Edition
Propiedades del artículo
Número de artículo: 000335109
Tipo de artículo: Dell Security Advisory
Última modificación: 23 jul 2025
Encuentra las respuestas que necesitas con la ayuda de otros usuarios de Dell
Servicios de asistencia
Comprueba si tu dispositivo está cubierto por los servicios de asistencia.