CVSS: 5.5EPSS: 0%CPEs: 24EXPL: 0CVE-2022-38125 – FTP Agent forwards traffic on inactive ports to LinkManager
https://notcve.org/view.php?id=CVE-2022-38125
Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager (FTP Agent modules) allows Exploiting Trust in Client. • https://www.secomea.com/support/cybersecurity-advisory • CWE-923: Improper Restriction of Communication Channel to Intended Endpoints •
CVSS: 6.5EPSS: 0%CPEs: 24EXPL: 0CVE-2022-38124 – Unwanted debug tool
https://notcve.org/view.php?id=CVE-2022-38124
Debug tool in Secomea SiteManager allows logged-in administrator to modify system state in an unintended manner. La herramienta de depuración en Secomea SiteManager permite al administrador conectado modificar el estado del sistema de manera no deseada. • https://www.secomea.com/support/cybersecurity-advisory • CWE-267: Privilege Defined With Unsafe Actions CWE-269: Improper Privilege Management •