CNNVD-202510-4216 Information

CNNVD ID

CNNVD-202510-4216

Related CVE

CVE-2025-36592

• CNNVD Published: 2025-10-30

Description (Chinese)

Dell Secure Connect Gateway Policy Manager是美国戴尔（Dell）公司的一个设备访问管理与策略控制系统。 Dell Secure Connect Gateway Policy Manager 5.20版本、5.22版本、5.24版本、5.26版本和5.28版本存在跨站脚本漏洞，该漏洞源于网页生成期间输入中和不当，可能导致跨站脚本攻击。

Description (English)

Dell Security Gateway Policy Manager is an equipment access management and strategy control system for Dell. Dell Security Gateway Policy Manager, version 5.20, version 5.22, version 5.24, version 5.26 and version 5.28 have a cross-site script loophole, which originates from inaccuracies in input during web page generation and may lead to cross-site script attacks.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

戴尔

Published

2025-10-30

Last Modified

2026-02-24

References

https://www.dell.com/support/kbdoc/en-us/000385220/dsa-2025-391-security-update-for-dell-secure-connect-gateway-policy-manager-for-multiple-vulnerabilities

Patch

https://www.dell.com/support/kbdoc/en-us/000385220/dsa-2025-391-security-update-for-dell-secure-connect-gateway-policy-manager-for-multiple-vulnerabilities