CVE-2025-14716

Improper Authentication vulnerability in Secomea GateManager webserver modules allows Authentication Bypass.This issue affects GateManager: 11.4;0...

EUVD-2025-208869

Improper Authentication vulnerability in Secomea GateManager webserver modules allows Authentication Bypass.This issue affects GateManager: 11.4;0...

CVE-2025-14716

Improper Authentication vulnerability in Secomea GateManager webserver modules allows Authentication Bypass.This issue affects GateManager: 11.4;0...

PT-2024-18147 · Secomea · Secomea Gatemanager

Name of the Vulnerable Software and Affected Versions: Secomea GateManager versions prior to 11.2.624071020 Description: The issue is related to the incorrect usage of seeds in the Pseudo-Random Number Generator PRNG in the Secomea GateManager's Webserver modules, allowing session hijacking...

CVE-2023-0317

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information...

CVE-2022-4308

Plaintext Storage of a Password vulnerability in Secomea GateManager USB wizard allows Authentication abuse on SiteManager, if the generated file is leaked...

PT-2023-16172 · Unknown · Gatemanager

Name of the Vulnerable Software and Affected Versions: GateManager affected versions not specified Description: The issue concerns an Unprotected Alternate Channel vulnerability in the debug console of GateManager. This vulnerability allows a system administrator to obtain sensitive information...

CVE-2022-25786

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. This issue affects: GateManager all versions prior to 9.7...

CVE-2022-25781

Cross-site Scripting XSS vulnerability in Web UI of Secomea GateManager allows phishing attacker to inject javascript or html into logged in user session...

CVE-2022-25787

Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea GateManager allows system administrator to hijack connection. This issue affects: Secomea GateManager all versions prior to 9.7...

CVE-2022-25778

Cross-Site Request Forgery CSRF vulnerability in Web UI of Secomea GateManager allows phishing attacker to issue get request in logged in user session...

CVE-2022-25782

Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and update privileged information. This issue affects: Secomea GateManager versions prior to 9.7...

Secomea GateManager 跨站脚本漏洞

Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerabilities exist in versions prior to Secomea GateManager 9.7, which can be exploited by attackers to inject javascript or html into a logged-in user session...

Secomea GateManager 安全漏洞

Secomea GateManager is a remote access server product from the Danish company Secomea.A security vulnerability exists in versions prior to Secomea GateManager 9.7, which stems from an unprotected alternate channel vulnerability in the debug console. An attacker could use this vulnerability to...

CVE-2021-32009

Cross-site Scripting XSS vulnerability in firmware section of Secomea GateManager allows logged in user to inject javascript in browser session. This issue affects: Secomea GateManager Version 9.6.621421014 and all prior versions...

Secomea GateManage 路径遍历漏洞

Secomea GateManager is a remote access server product from Secomea, Denmark. A security vulnerability exists in Secomea GateManager 9.6.621421014 and prior versions, which stems from an improper restriction of pathnames to restricted directories, allowing a logged in GateManager administrator to...

CVE-2021-32004

This issue affects: Secomea GateManager All versions prior to 9.6. Improper Check of host header in web server of Secomea GateManager allows attacker to cause browser cache poisoning...

CVE-2020-29032

Upload of Code Without Integrity Check vulnerability in firmware archive of Secomea GateManager allows authenticated attacker to execute malicious code on server. This issue affects: Secomea GateManager all versions prior to 9.4.621054022...

CVE-2020-29031

An Insecure Direct Object Reference vulnerability exists in the web UI of the GateManager which allows an authenticated attacker to reset the password of any user in its domain or any sub-domain, via escalation of privileges. This issue affects all GateManager versions prior to 9.2c...

CVE-2020-11646

A log information disclosure vulnerability in B&R GateManager 4260 and 9250 versions 9.0.20262 and GateManager 8250 versions 9.2.620236042 allows authenticated users to view log information reserved for other users...