Описание
Upload of Code Without Integrity Check vulnerability in firmware archive of Secomea GateManager allows authenticated attacker to execute malicious code on server. This issue affects: Secomea GateManager all versions prior to 9.4.621054022
Ссылки
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.4.621054022 (исключая)
Одновременно
cpe:2.3:o:secomea:gatemanager_8250_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:secomea:gatemanager_8250:-:*:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00209
Низкий
8.4 High
CVSS3
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-494
CWE-434
Связанные уязвимости
github
больше 3 лет назад
Upload of Code Without Integrity Check vulnerability in firmware archive of Secomea GateManager allows authenticated attacker to execute malicious code on server. This issue affects: Secomea GateManager all versions prior to 9.4.621054022
EPSS
Процентиль: 43%
0.00209
Низкий
8.4 High
CVSS3
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-494
CWE-434