Vulnerabilities > CVE-2021-32002 - Unspecified vulnerability in Secomea Sitemanager Firmware

CVSS 3.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

local

low complexity

secomea

NVD

Published: 2021-08-05

Updated: 2022-07-02

Summary

Improper Access Control vulnerability in web service of Secomea SiteManager allows local attacker without credentials to gather network information and configuration of the SiteManager. This issue affects: Secomea SiteManager All versions prior to 9.5 on Hardware.

Vulnerable Configurations

Part	Description	Count
OS	Secomea Secomea Sitemanager Firmware -	1
Hardware	Secomea Secomea Sitemanager -	1

References

https://www.secomea.com/support/cybersecurity-advisory