Lucene search
K

300 matches found

Positive Technologies
Positive Technologies
added 2024/04/29 12:0 a.m.8 views

PT-2024-18459 · Secomea · Secomea Gatemanager

Name of the Vulnerable Software and Affected Versions: Secomea GateManager versions 9.7 through 11.2.624095033 Description: A Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' issue in the webserver modules of Secomea GateManager allows the crash of GateManager. Recommendations...

8.2CVSS6.9AI score0.00456EPSS
Exploits0References8
NVD
NVD
added 2024/04/18 11:15 a.m.24 views

CVE-2023-3675

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Secomea GateManager Web GUI allows Reading Data from System Resources.This issue affects GateManager: from 11.0.623074018 before 11.0.623373051...

6.5CVSS6.4AI score0.00541EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/18 10:41 a.m.8 views

CVE-2023-3675 Insufficient input validation when downloading certain file types.

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Secomea GateManager Web GUI allows Reading Data from System Resources.This issue affects GateManager: from 11.0.623074018 before 11.0.623373051...

6.5CVSS6.8AI score0.00541EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/18 10:41 a.m.27 views

CVE-2023-3675 Insufficient input validation when downloading certain file types.

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Secomea GateManager Web GUI allows Reading Data from System Resources.This issue affects GateManager: from 11.0.623074018 before 11.0.623373051...

6.5CVSS6.6AI score0.00541EPSS
Exploits0References1
CVE
CVE
added 2024/04/18 10:41 a.m.70 views

CVE-2023-3675

CVE-2023-3675 affects Secomea GateManager (Web GUI). The issue is a path traversal vulnerability in GateManager that allows reading data from system resources. Affected versions are 11.0.623074018 up to, but not including, 11.0.623373051. The Root Cause and Verified Impact are described as improp...

6.5CVSS6.7AI score0.00541EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/18 12:0 a.m.7 views

Secomea GateManager 安全漏洞

Secomea GateManager is a remote access server product from Secomea, Denmark. A security vulnerability exists in Secomea GateManager versions 11.0.623074018 through 11.0.623373051, which stems from the presence of a path traversal issue, leading to the disclosure of sensitive information or furthe...

6.5CVSS6.5AI score0.00541EPSS
Exploits0References2
OSV
OSV
added 2023/07/17 1:15 p.m.3 views

CVE-2023-2912

Use After Free vulnerability in Secomea SiteManager Embedded allows Obstruction...

7.5CVSS5.8AI score0.00454EPSS
Exploits0References1
NVD
NVD
added 2023/07/17 1:15 p.m.20 views

CVE-2023-2912

Use After Free vulnerability in Secomea SiteManager Embedded allows Obstruction...

7.5CVSS0.00454EPSS
Exploits0References1
Prion
Prion
added 2023/07/17 1:15 p.m.15 views

Design/Logic Flaw

Use After Free vulnerability in Secomea SiteManager Embedded allows Obstruction...

5CVSS7.6AI score0.00454EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/17 12:31 p.m.9 views

CVE-2023-2912 SiteManager Embedded service disruption

Use After Free vulnerability in Secomea SiteManager Embedded allows Obstruction...

5.9CVSS7AI score0.00454EPSS
Exploits0References1
CVE
CVE
added 2023/07/17 12:31 p.m.42 views

CVE-2023-2912

CVE-2023-2912 is a reported Use-After-Free in Secomea SiteManager Embedded leading to service disruption (obstruction). Affected product/component: SiteManager Embedded. Root cause: use-after-free condition as described across multiple sources; impact is availability disruption. CVSSv3.1 base sco...

7.5CVSS6.3AI score0.00454EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/17 12:31 p.m.24 views

CVE-2023-2912 SiteManager Embedded service disruption

Use After Free vulnerability in Secomea SiteManager Embedded allows Obstruction...

5.9CVSS7.8AI score0.00454EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/07/17 12:0 a.m.5 views

Secomea SiteManager 资源管理错误漏洞

Secomea SiteManager is a software application from Secomea, Denmark. It provides a remote maintenance function for industrial equipment. A security vulnerability exists in Secomea SiteManager Embedded, which originates from the presence of a post-release reuse vulnerability...

7.5CVSS7.4AI score0.00454EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/17 12:0 a.m.4 views

PT-2023-22161 · Secomea · Secomea Sitemanager Embedded

Name of the Vulnerable Software and Affected Versions: Secomea SiteManager Embedded affected versions not specified Description: The issue is related to a Use After Free vulnerability, which allows obstruction. There is no information provided about the estimated number of potentially affected...

7.5CVSS7.4AI score0.00454EPSS
Exploits0References4
NVD
NVD
added 2023/04/19 12:15 p.m.18 views

CVE-2022-4308

Plaintext Storage of a Password vulnerability in Secomea GateManager USB wizard allows Authentication abuse on SiteManager, if the generated file is leaked...

8.8CVSS6.9AI score0.0017EPSS
Exploits0References1
NVD
NVD
added 2023/04/19 12:15 p.m.20 views

CVE-2022-38125

Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager FTP Agent modules allows Exploiting Trust in Client...

5.5CVSS4.3AI score0.00157EPSS
Exploits0References1
Prion
Prion
added 2023/04/19 12:15 p.m.19 views

Design/Logic Flaw

Plaintext Storage of a Password vulnerability in Secomea GateManager USB wizard allows Authentication abuse on SiteManager, if the generated file is leaked...

4.3CVSS8.6AI score0.0017EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/04/19 11:58 a.m.24 views

CVE-2022-38125 FTP Agent forwards traffic on inactive ports to LinkManager

Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager FTP Agent modules allows Exploiting Trust in Client...

2.9CVSS5.7AI score0.00157EPSS
Exploits0References1
CVE
CVE
added 2023/04/19 11:58 a.m.64 views

CVE-2022-38125

CVE-2022-38125 affects Secomea SiteManager, specifically the FTP Agent modules. The root cause is Improper Restriction of Communication Channel to Intended Endpoints, enabling exploitation of trust in the client. The NVD entry lists a CVSS v3.1 base score of 5.5 (Medium) with Local attack vector,...

5.5CVSS4.6AI score0.00157EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/19 11:58 a.m.18 views

CVE-2022-38125 FTP Agent forwards traffic on inactive ports to LinkManager

Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager FTP Agent modules allows Exploiting Trust in Client...

2.9CVSS6.8AI score0.00157EPSS
Exploits0References1
Rows per page
Query Builder