Lucene search

K

SiteManager Security Vulnerabilities

cve
cve

CVE-2023-2912

Use After Free vulnerability in Secomea SiteManager Embedded allows...

7.5CVSS

7.5AI Score

0.001EPSS

2023-07-17 01:15 PM
13
cve
cve

CVE-2022-38125

Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager (FTP Agent modules) allows Exploiting Trust in...

5.5CVSS

5.5AI Score

0.0004EPSS

2023-04-19 12:15 PM
21
cve
cve

CVE-2022-38124

Debug tool in Secomea SiteManager allows logged-in administrator to modify system state in an unintended...

6.5CVSS

6.4AI Score

0.001EPSS

2022-12-13 02:15 PM
26
cve
cve

CVE-2022-25785

Stack-based Buffer Overflow vulnerability in SiteManager allows logged-in or local user to cause arbitrary code execution. This issue affects: Secomea SiteManager all versions prior to...

7.2CVSS

7.2AI Score

0.001EPSS

2022-05-04 02:15 PM
67
cve
cve

CVE-2022-25784

Cross-site Scripting (XSS) vulnerability in Web GUI of SiteManager allows logged-in user to inject scripting. This issue affects: Secomea SiteManager all versions prior to...

9.1CVSS

4.7AI Score

0.001EPSS

2022-05-04 02:15 PM
52
cve
cve

CVE-2021-32010

Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to...

8.1CVSS

7.9AI Score

0.001EPSS

2022-05-04 02:15 PM
56
cve
cve

CVE-2021-32005

Cross-site Scripting (XSS) vulnerability in log view of Secomea SiteManager allows a logged in user to store javascript for later execution. This issue affects: Secomea SiteManager Version 9.6.621421014 and all prior...

6.5CVSS

5.3AI Score

0.001EPSS

2022-03-10 05:42 PM
64
cve
cve

CVE-2021-32003

Unprotected Transport of Credentials vulnerability in SiteManager provisioning service allows local attacker to capture credentials if the service is used after provisioning. This issue affects: Secomea SiteManager All versions prior to 9.5 on...

8CVSS

5.3AI Score

0.0004EPSS

2021-08-05 09:15 PM
42
7
cve
cve

CVE-2021-32002

Improper Access Control vulnerability in web service of Secomea SiteManager allows local attacker without credentials to gather network information and configuration of the SiteManager. This issue affects: Secomea SiteManager All versions prior to 9.5 on...

4.3CVSS

3.9AI Score

0.0004EPSS

2021-08-05 09:15 PM
40
8
cve
cve

CVE-2020-29020

Improper Access Control vulnerability in web service of Secomea SiteManager allows remote attacker to access the web UI from the internet using the configured credentials. This issue affects: Secomea SiteManager All versions prior to 9.4.620527004 on...

9.1CVSS

6.9AI Score

0.006EPSS

2021-03-05 09:15 PM
49
4
cve
cve

CVE-2020-29027

Cross-site Scripting (XSS) vulnerability in GUI of Secomea SiteManager could allow an attacker to cause an XSS Attack. This issue affects: Secomea SiteManager all versions prior to...

5.4CVSS

5.1AI Score

0.001EPSS

2021-02-16 04:15 PM
20
cve
cve

CVE-2020-29025

A vulnerability in SiteManager-Embedded (SM-E) Web server which may allow attacker to construct a URL that if visited by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application....

6.1CVSS

6.3AI Score

0.001EPSS

2021-02-16 04:15 PM
24
cve
cve

CVE-2020-11641

A local file inclusion vulnerability in B&R SiteManager versions <9.2.620236042 allows authenticated users to read sensitive files from SiteManager...

7.7CVSS

6.1AI Score

0.001EPSS

2020-10-15 03:15 PM
22
cve
cve

CVE-2020-11642

The local file inclusion vulnerability present in B&R SiteManager versions <9.2.620236042 allows authenticated users to impact availability of SiteManager...

7.7CVSS

6.2AI Score

0.001EPSS

2020-10-15 03:15 PM
19
cve
cve

CVE-2010-1331

SQL injection vulnerability in Heartlogic HL-SiteManager allows remote attackers to execute arbitrary SQL commands via unknown...

8.6AI Score

0.001EPSS

2010-04-09 05:30 PM
22