Dell SCG SRS 5.26 Live-Restore Improper Config
CVE-2025-26475 Published on March 19, 2025

Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.26, Enables Live-Restore setting which enhances security by keeping containers running during daemon restarts, reducing attack exposure, preventing accidental misconfigurations, and ensuring security controls remain active.

Vendor Advisory NVD

Vulnerability Analysis

CVE-2025-26475 can be exploited with network access, requires user interaction and a small amount of user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to be low. considered to have a small impact on confidentiality and integrity and availability.

Attack Vector:
NETWORK
Attack Complexity:
HIGH
Privileges Required:
LOW
User Interaction:
REQUIRED
Scope:
CHANGED
Confidentiality Impact:
LOW
Integrity Impact:
LOW
Availability Impact:
LOW

Weakness Type

What is an authentification Vulnerability?

When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.

CVE-2025-26475 has been classified to as an authentification vulnerability or weakness.


Products Associated with CVE-2025-26475

Want to know whenever a new CVE is published for Dell Secure Connect Gateway? stack.watch will email you.

Dell Secure Connect Gateway
 

Affected Versions

Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS Version 5.26.00.20 is affected by CVE-2025-26475

Exploit Probability

EPSS
0.07%
Percentile
21.03%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.