Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:o:secomea:sitemanager_1139_firmware:9.2c:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2022-38125 |
Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager (FTP Agent modules) allows Exploiting Trust in Client. Published: April 19, 2023; 8:15:07 AM -0400 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2022-38124 |
Debug tool in Secomea SiteManager allows logged-in administrator to modify system state in an unintended manner. Published: December 13, 2022; 9:15:09 AM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
CVE-2022-25785 |
Stack-based Buffer Overflow vulnerability in SiteManager allows logged-in or local user to cause arbitrary code execution. This issue affects: Secomea SiteManager all versions prior to 9.7. Published: May 04, 2022; 10:15:08 AM -0400 |
V3.1: 7.2 HIGH V2.0: 6.5 MEDIUM |
CVE-2022-25784 |
Cross-site Scripting (XSS) vulnerability in Web GUI of SiteManager allows logged-in user to inject scripting. This issue affects: Secomea SiteManager all versions prior to 9.7. Published: May 04, 2022; 10:15:08 AM -0400 |
V3.1: 4.8 MEDIUM V2.0: 3.5 LOW |
CVE-2021-32010 |
Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to 9.7. Published: May 04, 2022; 10:15:07 AM -0400 |
V3.1: 8.1 HIGH V2.0: 6.8 MEDIUM |
CVE-2021-32005 |
Cross-site Scripting (XSS) vulnerability in log view of Secomea SiteManager allows a logged in user to store javascript for later execution. This issue affects: Secomea SiteManager Version 9.6.621421014 and all prior versions. Published: March 10, 2022; 12:42:13 PM -0500 |
V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |