DSA-2023-193: Dell Secure Connect Gateway Security Policy Manager Update for Multiple Vulnerabilities

摘要: Dell Secure Connect Gateway Policy Manager contains remediation for multiple vulnerabilities that could be exploited by malicious users to compromise the affected system.

本文适用于 本文不适用于 本文并非针对某种特定的产品。 本文并非包含所有产品版本。
查看其他资源

影响

Critical

详情

Third-Party Component CVEs More information
Spring Framework CVE-2023-20860, CVE-2023-20861, CVE-2023-20862, CVE-2023-20863, CVE-2023-28708 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
JRE 1.8.0 CVE-2023-21830, CVE-2023-21843 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.​​​​​​​
Json-Smart CVE-2023-1370 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.​​​​​​​

Dell Technologies 建议所有客户考虑 CVSS 基本分数以及任何相关的时间和环境分数,这可能会影响与特定安全漏洞相关的潜在严重程度。

受影响的产品和补救措施

Product Affected Versions Updated Version Link to Update
SCG Policy Manager 5.14.00.14 5.16.00.14 https://www.dell.com/support/home/product-support/product/secure-connect-gateway-ve/drivers
Product Affected Versions Updated Version Link to Update
SCG Policy Manager 5.14.00.14 5.16.00.14 https://www.dell.com/support/home/product-support/product/secure-connect-gateway-ve/drivers
Version 5.16.00.14 also includes the remediation for PRISMA-2023-0067.

修订历史记录

RevisionDateDescription
1.02023-05-31Initial Release
2.02023-06-08Updated the Impact
3.02023-08-31Updated for enhanced presentation with no changes to content. 

相关信息

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

法律免责声明

受影响的产品

Secure Connect Gateway, Secure Connect Gateway - Virtual Edition
文章属性
文章编号: 000214200
文章类型: Dell Security Advisory
上次修改时间: 19 9月 2025
从其他戴尔用户那里查找问题的答案
支持服务
检查您的设备是否在支持服务涵盖的范围内。