MEDIUMβœ“ PATCHπŸ‡΅πŸ‡± Wersja polska

CVE-2022-25779

CVSS 4.3v3.1pub. 2022-05-04upd. 2024-11-21

Logging of Excessive Data vulnerability in audit log of Secomea GateManager allows logged in user to write text entries in audit log. This issue affects: Secomea GateManager versions prior to 9.7.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
  • Secomea Gatemanager 4250

    HW
    Secomea
    wszystkie wersje
  • Secomea Gatemanager 4250 Firmware

    OS
    Secomea
    < 9.7.622134021
  • Secomea Gatemanager 4260

    HW
    Secomea
    wszystkie wersje
  • Secomea Gatemanager 4260 Firmware

    OS
    Secomea
    < 9.7.622134021
  • Secomea Gatemanager 8250

    HW
    Secomea
    wszystkie wersje
  • Secomea Gatemanager 8250 Firmware

    OS
    Secomea
    < 9.7.622134021
  • Secomea Gatemanager 9250

    HW
    Secomea
    wszystkie wersje
  • Secomea Gatemanager 9250 Firmware

    OS
    Secomea
    < 9.7.622134021
🟒
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2020-29026CRITICAL9.0ten sam produkt

A directory traversal vulnerability exists in the file upload function of the GateManager that allows an authe...

CVE-2020-14510CRITICAL9.8ten sam produkt

GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing...

CVE-2020-14500CRITICAL10.0ten sam produkt

Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary ...

CVE-2022-25787HIGH7.5ten sam produkt

Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea GateManager allo...

CVE-2020-29032HIGH8.4ten sam produkt

Upload of Code Without Integrity Check vulnerability in firmware archive of Secomea GateManager allows authent...

CVE-2022-25779 β€” Secomea β€” Gatemanager 4250 β€” MEDIUM β€” CVSS 4.3 | CVEbaza.pl