Vulnerabilities > Secomea > Sitemanager 1129 Firmware > 9.2c

DATE CVE VULNERABILITY TITLE RISK
2023-04-19 CVE-2022-38125 Unspecified vulnerability in Secomea products
Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager (FTP Agent modules) allows Exploiting Trust in Client.
local
low complexity
secomea
5.5
5.5
2022-05-04 CVE-2021-32010 Inadequate Encryption Strength vulnerability in Secomea products
Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks.
network
secomea CWE-326
6.8
6.8
2022-05-04 CVE-2022-25784 Cross-site Scripting vulnerability in Secomea products
Cross-site Scripting (XSS) vulnerability in Web GUI of SiteManager allows logged-in user to inject scripting.
network
secomea CWE-79
3.5
3.5
2022-05-04 CVE-2022-25785 Out-of-bounds Write vulnerability in Secomea products
Stack-based Buffer Overflow vulnerability in SiteManager allows logged-in or local user to cause arbitrary code execution.
network
low complexity
secomea CWE-787
6.5
6.5
2022-03-10 CVE-2021-32005 Cross-site Scripting vulnerability in Secomea products
Cross-site Scripting (XSS) vulnerability in log view of Secomea SiteManager allows a logged in user to store javascript for later execution.
network
secomea CWE-79
3.5
3.5