Product:

Gatemanager_9250_firmware

(Secomea)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 14
Date Id Summary Products Score Patch Annotated
2022-05-04 CVE-2022-25781 Cross-site Scripting (XSS) vulnerability in Web UI of Secomea GateManager allows phishing attacker to inject javascript or html into logged in user session. Gatemanager_4250_firmware, Gatemanager_4260_firmware, Gatemanager_8250_firmware, Gatemanager_9250_firmware 6.1
2022-05-04 CVE-2022-25782 Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and update privileged information. This issue affects: Secomea GateManager versions prior to 9.7. Gatemanager_4250_firmware, Gatemanager_4260_firmware, Gatemanager_8250_firmware, Gatemanager_9250_firmware 5.4
2022-05-04 CVE-2022-25783 Insufficient Logging vulnerability in web server of Secomea GateManager allows logged in user to issue improper queries without logging. This issue affects: Secomea GateManager versions prior to 9.7. Gatemanager_4250_firmware, Gatemanager_4260_firmware, Gatemanager_8250_firmware, Gatemanager_9250_firmware 4.3
2022-05-04 CVE-2022-25787 Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea GateManager allows system administrator to hijack connection. This issue affects: Secomea GateManager all versions prior to 9.7. Gatemanager_4250_firmware, Gatemanager_4260_firmware, Gatemanager_8250_firmware, Gatemanager_9250_firmware 6.7