heise PlusAbo
Anzeige

Various attacks on Dell Secure Connect Gateway Policy Manager possible

Several security vulnerabilities endanger systems with Dell Secure Connect Gateway Policy Manager. A repaired version is available for download.

listen Print view
A symbolic debt with an update reminder.

(Image: Artur Szczybylo / Shutterstock.com)

1 min. read
Security
By

Dell's remote PC access management solution Secure Connect Gateway Policy Manager is vulnerable in several places. The vulnerabilities are in various third-party software components.

Install Security Patch

Even though there are no indications of ongoing attacks in the warning message about the gaps, administrators should not delay too long and should install the patched version 5.34.00.14 promptly. According to the developers, all previous versions are vulnerable.

Videos by heise

Among others, the components Angular, Java 21, and logback are affected by the security problems. If a victim opens a prepared PNG file, for example, errors occur and the system hangs in a DoS state (CVE-2026-25646 "high"). Furthermore, there can be XSS attacks (CVE-2026-22610 "high") and errors when locking certificates (CVE-2026-24734 "high").

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten