CVE-2022-2752 Potential vulnerabilities in GM login process

A vulnerability in the web server of Secomea GateManager allows a local user to impersonate as the previous user under some failed login conditions. This issue affects: Secomea GateManager versions from 9.4 through 9.7...

CVE-2022-2752

CVE-2022-2752 affects Secomea GateManager: vulnerable in the web server component for versions 9.4–9.7, enabling a local user to impersonate the previous user under certain failed login conditions. The connected sources confirm affected product and version range, describe the root cause as a logi...

PT-2022-18466 · Secomea · Secomea Gatemanager

Name of the Vulnerable Software and Affected Versions: Secomea GateManager versions 9.4 through 9.7 Description: A vulnerability in the web server of Secomea GateManager allows a local user to impersonate as the previous user under some failed login conditions. Recommendations: For Secomea...

Secomea GateManager 授权问题漏洞

Secomea GateManager is a remote access server product from Secomea, Denmark. A security vulnerability exists in Secomea GateManager versions 9.4 through 9.7. An attacker has exploited the vulnerability to impersonate a previous user in certain login failures...

CVE-2022-38123

Improper Input Validation of plugin files in Administrator Interface of Secomea GateManager allows a server administrator to inject code into the GateManager interface. This issue affects: Secomea GateManager versions prior to 10.0...

CVE-2022-38123

Improper Input Validation of plugin files in Administrator Interface of Secomea GateManager allows a server administrator to inject code into the GateManager interface. This issue affects: Secomea GateManager versions prior to 10.0...

Input validation

Improper Input Validation of plugin files in Administrator Interface of Secomea GateManager allows a server administrator to inject code into the GateManager interface. This issue affects: Secomea GateManager versions prior to 10.0...

CVE-2022-38123 Insufficient validation of plugin files

Improper Input Validation of plugin files in Administrator Interface of Secomea GateManager allows a server administrator to inject code into the GateManager interface. This issue affects: Secomea GateManager versions prior to 10.0...

CVE-2022-38123

CVE-2022-38123 affects Secomea GateManager prior to v10.0. The issue is due to improper input validation of plugin files in the Administrator Interface, allowing a server administrator to inject code into the GateManager interface. Documents consistently identify the affected product/versions and...

CVE-2022-38123 Insufficient validation of plugin files

Improper Input Validation of plugin files in Administrator Interface of Secomea GateManager allows a server administrator to inject code into the GateManager interface. This issue affects: Secomea GateManager versions prior to 10.0...

PT-2022-24217 · Secomea · Secomea Gatemanager

Name of the Vulnerable Software and Affected Versions: Secomea GateManager versions prior to 10.0 Description: The issue is related to improper input validation of plugin files in the Administrator Interface of Secomea GateManager, allowing a server administrator to inject code into the GateManag...

Secomea GateManager 输入验证错误漏洞

Secomea GateManager is a remote access server product from Secomea, Denmark. A security vulnerability exists in Secoema GateManager versions prior to 10.0, which stems from incorrect input validation of a plug-in file in the administrator interface allowing a server administrator to inject code...

Secomea GateManager Information Disclosure Vulnerability

Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerability exists in all versions of Secomea GateManager prior to 9.7. The vulnerability stems from the exposure of query string information in GET requests of the LMM API, which could be exploited ...

Secomea GateManager Cross-Site Request Forgery Vulnerability

Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerabilities exist in versions prior to Secomea GateManager 9.7, which can be exploited by attackers to issue get requests in a logged-in user session...

Secomea GateManager has an unspecified vulnerability (CNVD-2022-38146)

Secomea GateManager is a remote access server product from the Danish company Secomea.A security vulnerability exists in versions prior to Secomea GateManager 9.7, which stems from an unprotected alternate channel vulnerability in the debug console. An attacker could use this vulnerability to...

Secomea GateManager has an unspecified vulnerability

Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerabilities exist in versions prior to Secomea GateManager 9.7, which could be exploited to allow logged-in users to write text entries in the audit log...

Secomea GateManager Information Disclosure Vulnerability (CNVD-2022-38149)

Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerability exists in versions prior to Secomea GateManager 9.7, which stems from the exposure of information in Secomea GateManager's Web UI, and could be exploited by an attacker to allow logged-in...

Secomea GateManager Cross-Site Scripting Vulnerability (CNVD-2022-38151)

Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerabilities exist in versions prior to Secomea GateManager 9.7, which can be exploited by attackers to inject javascript or html into a logged-in user session...

Secomea GateManager Insufficient Privilege Vulnerability

Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerability exists in versions prior to Secomea GateManager 9.7, which stems from improper handling of permissions in Secomea GateManager's Web UI, and could be exploited to allow logged-in users to...

Secomea GateManager Insufficient Logging Vulnerability

Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerabilities exist in versions prior to Secomea GateManager 9.7, which could be exploited by attackers to allow logged-in users to issue incorrect queries without being logged in...