Vulnerabilities > CVE-2020-14508 - Off-by-one Error vulnerability in Secomea Gatemanager 8250 Firmware 9.2C

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

secomea

CWE-193

critical

NVD

Published: 2020-08-25

Updated: 2020-09-02

Summary

GateManager versions prior to 9.2c, The affected product is vulnerable to an off-by-one error, which may allow an attacker to remotely execute arbitrary code or cause a denial-of-service condition.

Vulnerable Configurations

Part	Description	Count
OS	Secomea Secomea Gatemanager 8250 Firmware 9.2C	1
Hardware	Secomea Secomea Gatemanager 8250 -	1

Common Weakness Enumeration (CWE)

CWE-193 - Off-by-one Error

References

https://us-cert.cisa.gov/ics/advisories/icsa-20-210-01