CVE-2022-25787

< 9.7.622134021

Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea GateManager allows system administra

7.5HIGH

CVE-2022-25783

< 9.7.622134021

Insufficient Logging vulnerability in web server of Secomea GateManager allows logged in user to issue improper queries without lo

4.3MEDIUM

CVE-2022-25782

< 9.7.622134021

Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and up

5.4MEDIUM

CVE-2022-25781

< 9.7.622134021

Cross-site Scripting (XSS) vulnerability in Web UI of Secomea GateManager allows phishing attacker to inject javascript or html in

4.2MEDIUM

CVE-2022-25780

< 9.7.622134021

Information Exposure vulnerability in web UI of Secomea GateManager allows logged in user to query devices outside own scope.

4.3MEDIUM

CVE-2022-25779

< 9.7.622134021

Logging of Excessive Data vulnerability in audit log of Secomea GateManager allows logged in user to write text entries in audit l

4.3MEDIUM

CVE-2022-25778

< 9.7.622134021

Cross-Site Request Forgery (CSRF) vulnerability in Web UI of Secomea GateManager allows phishing attacker to issue get request in

4.2MEDIUM

CVE-2021-32010

< 9.7.622134021

Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in t

5.6MEDIUM

CVE-2021-32004

< 9.6

This issue affects: Secomea GateManager All versions prior to 9.6. Improper Check of host header in web server of Secomea GateMana

3.7LOW

CVE-2020-29032

< 9.4.621054022

Upload of Code Without Integrity Check vulnerability in firmware archive of Secomea GateManager allows authenticated attacker to e

8.4HIGH

CVE-2020-29024

< 9.3

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute vulnerability in (GTA) GoToAppliance of Secomea GateManager could all

5.3MEDIUM

CVE-2020-29023

< 9.3

Improper Encoding or Escaping of Output from CSV Report Generator of Secomea GateManager allows an authenticated administrator to

3.5LOW

CVE-2020-29022

< 9.3

Failure to Sanitize host header value on output in the GateManager Web server could allow an attacker to conduct web cache poisoni

5.3MEDIUM

CVE-2020-29031

< 9.2c

An Insecure Direct Object Reference vulnerability exists in the web UI of the GateManager which allows an authenticated attacker t

7.1HIGH

CVE-2020-29026

< 9.2c

A directory traversal vulnerability exists in the file upload function of the GateManager that allows an authenticated attacker wi

9.0CRITICAL

CVE-2020-29021

< 9.3

A vulnerability in web UI input field of GateManager allows authenticated attacker to enter script tags that could cause XSS. This

3.5LOW

CVE-2020-11646

< 9.2.620236042

A log information disclosure vulnerability in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 versions <9.2

4.3MEDIUM

CVE-2020-11645

< 9.2.620236042

A denial of service vulnerability in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 versions <9.2.62023604

6.5MEDIUM

CVE-2020-11644

< 9.2.620236042

The information disclosure vulnerability present in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 version

6.5MEDIUM

CVE-2020-11643

< 9.2.620236042

An information disclosure vulnerability in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 versions <9.2.62

6.5MEDIUM

CVE-2020-14512

< 9.2c

GateManager versions prior to 9.2c, The affected product uses a weak hash type, which may allow an attacker to view user passwords

8.1HIGH

CVE-2020-14510

all versions

GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged att

9.8CRITICAL

CVE-2020-14508

all versions

GateManager versions prior to 9.2c, The affected product is vulnerable to an off-by-one error, which may allow an attacker to remo

8.1HIGH

CVE-2020-14500

all versions

Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data.

10.0CRITICAL