Sitemanager_3549_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Sitemanager_3549_firmware
(Secomea)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	7

Date	Id	Summary	Products	Score	Patch	Annotated
2023-04-19	CVE-2022-38125	Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager (FTP Agent modules) allows Exploiting Trust in Client.	Sitemanager_1129_firmware, Sitemanager_1139_firmware, Sitemanager_1149_firmware, Sitemanager_1529_firmware, Sitemanager_1539_firmware, Sitemanager_1549_firmware, Sitemanager_3329_firmware, Sitemanager_3339_firmware, Sitemanager_3349_firmware, Sitemanager_3529_firmware, Sitemanager_3539_firmware, Sitemanager_3549_firmware	5.5
2021-02-16	CVE-2020-29027	Cross-site Scripting (XSS) vulnerability in GUI of Secomea SiteManager could allow an attacker to cause an XSS Attack. This issue affects: Secomea SiteManager all versions prior to 9.3.	Sitemanager_1129_firmware, Sitemanager_1139_firmware, Sitemanager_1149_firmware, Sitemanager_3329_firmware, Sitemanager_3339_firmware, Sitemanager_3349_firmware, Sitemanager_3529_firmware, Sitemanager_3539_firmware, Sitemanager_3549_firmware	5.4
2022-03-10	CVE-2021-32005	Cross-site Scripting (XSS) vulnerability in log view of Secomea SiteManager allows a logged in user to store javascript for later execution. This issue affects: Secomea SiteManager Version 9.6.621421014 and all prior versions.	Sitemanager_1129_firmware, Sitemanager_1139_firmware, Sitemanager_1149_firmware, Sitemanager_3329_firmware, Sitemanager_3339_firmware, Sitemanager_3349_firmware, Sitemanager_3529_firmware, Sitemanager_3539_firmware, Sitemanager_3549_firmware	5.4
2022-05-04	CVE-2021-32010	Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to 9.7.	Gatemanager_4250_firmware, Gatemanager_4260_firmware, Gatemanager_8250_firmware, Gatemanager_9250_firmware, Linkmanager, Sitemanager_1129_firmware, Sitemanager_1139_firmware, Sitemanager_1149_firmware, Sitemanager_3329_firmware, Sitemanager_3339_firmware, Sitemanager_3349_firmware, Sitemanager_3529_firmware, Sitemanager_3539_firmware, Sitemanager_3549_firmware	8.1
2022-05-04	CVE-2022-25784	Cross-site Scripting (XSS) vulnerability in Web GUI of SiteManager allows logged-in user to inject scripting. This issue affects: Secomea SiteManager all versions prior to 9.7.	Sitemanager_1129_firmware, Sitemanager_1139_firmware, Sitemanager_1149_firmware, Sitemanager_3329_firmware, Sitemanager_3339_firmware, Sitemanager_3349_firmware, Sitemanager_3529_firmware, Sitemanager_3539_firmware, Sitemanager_3549_firmware	4.8
2022-05-04	CVE-2022-25785	Stack-based Buffer Overflow vulnerability in SiteManager allows logged-in or local user to cause arbitrary code execution. This issue affects: Secomea SiteManager all versions prior to 9.7.	Sitemanager_1129_firmware, Sitemanager_1139_firmware, Sitemanager_1149_firmware, Sitemanager_3329_firmware, Sitemanager_3339_firmware, Sitemanager_3349_firmware, Sitemanager_3529_firmware, Sitemanager_3539_firmware, Sitemanager_3549_firmware	7.2
2022-12-13	CVE-2022-38124	Debug tool in Secomea SiteManager allows logged-in administrator to modify system state in an unintended manner.	Sitemanager_1129_firmware, Sitemanager_1139_firmware, Sitemanager_1149_firmware, Sitemanager_1529_firmware, Sitemanager_1539_firmware, Sitemanager_1549_firmware, Sitemanager_3329_firmware, Sitemanager_3339_firmware, Sitemanager_3349_firmware, Sitemanager_3529_firmware, Sitemanager_3539_firmware, Sitemanager_3549_firmware	6.5