CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-1969 – Heap buffer overflow
https://notcve.org/view.php?id=CVE-2024-1969
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Secomea GateManager (webserver modules) allows crash of GateManager.This issue affects GateManager: from 9.7 before 11.2.624095033. La vulnerabilidad de copia de búfer sin verificar el tamaño de la entrada ('desbordamiento de búfer clásico') en Secomea GateManager (módulos de servidor web) permite el bloqueo de GateManager. Este problema afecta a GateManager: desde 9.7 antes de 11.2.624095033. • https://www.secomea.com/support/cybersecurity-advisory • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-1579 – Insufficient seeding of random number generator
https://notcve.org/view.php?id=CVE-2024-1579
Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Secomea GateManager (Webserver modules) allows Session Hijacking.This issue affects GateManager: before 11.2.624071020. El uso incorrecto de semillas en la vulnerabilidad del generador de números pseudoaleatorios (PRNG) en Secomea GateManager (módulos de servidor web) permite el secuestro de sesión. Este problema afecta a GateManager: antes de 11.2.624071020. • https://www.secomea.com/support/cybersecurity-advisory • CWE-335: Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-3675 – Insufficient input validation when downloading certain file types.
https://notcve.org/view.php?id=CVE-2023-3675
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Secomea GateManager (Web GUI) allows Reading Data from System Resources.This issue affects GateManager: from 11.0.623074018 before 11.0.623373051. La limitación inadecuada de un nombre de ruta a una vulnerabilidad de directorio restringido ("Path Traversal") en Secomea GateManager (Web GUI) permite leer datos de los recursos del sistema. Este problema afecta a GateManager: desde 11.0.623074018 antes de 11.0.623373051. • https://www.secomea.com/support/cybersecurity-advisory • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-2912 – SiteManager Embedded service disruption
https://notcve.org/view.php?id=CVE-2023-2912
Use After Free vulnerability in Secomea SiteManager Embedded allows Obstruction. • https://www.secomea.com/support/cybersecurity-advisory • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 24EXPL: 0CVE-2022-38125 – FTP Agent forwards traffic on inactive ports to LinkManager
https://notcve.org/view.php?id=CVE-2022-38125
Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager (FTP Agent modules) allows Exploiting Trust in Client. • https://www.secomea.com/support/cybersecurity-advisory • CWE-923: Improper Restriction of Communication Channel to Intended Endpoints •