Input validation

2022-05-0414:15:00

PRIOn knowledge base

www.prio-n.com

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.9%

JSON

Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and update privileged information. This issue affects: Secomea GateManager versions prior to 9.7.

CPENameOperatorVersion
gatemanager_4250_firmwarelt9.7.622134021
gatemanager_4260_firmwarelt9.7.622134021
gatemanager_8250_firmwarelt9.7.622134021
gatemanager_9250_firmwarelt9.7.622134021

Name	Operator	Version
gatemanager_4250_firmware	lt	9.7.622134021
gatemanager_4260_firmware	lt	9.7.622134021
gatemanager_8250_firmware	lt	9.7.622134021
gatemanager_9250_firmware	lt	9.7.622134021

References

www.secomea.com/support/cybersecurity-advisory/