| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-25779 | Insufficient scope checks allows adding unrelated audit log entries | Secomea | GateManager | Medium | 4.3 | 2022-05-04 13:51:08 | Deep Dive |
| CVE-2022-25778 | Unload handlers may unintentionally defeat CSRF guards | Secomea | GateManager | Medium | 4.2 | 2022-05-04 13:49:55 | Deep Dive |
| CVE-2021-32010 | Clients may connect to a GateManager with TLS 1.0 | Secomea | SiteManager | Medium | 5.6 | 2022-05-04 13:45:03 | Deep Dive |
| CVE-2021-32009 | Missing XSS guards on firmware page | Secomea | GateManager | Medium | 5.0 | 2022-03-11 17:53:58 | Deep Dive |
| CVE-2021-32005 | SiteManager Log View XSS Issue | Secomea | SiteManager | Medium | 6.5 | 2022-03-07 15:21:27 | Deep Dive |
| CVE-2021-32006 | GateManager information leak for LinkManager Users | Secomea | GateManager | Medium | 5.0 | 2022-03-07 15:08:16 | Deep Dive |
| CVE-2021-32008 | Logged-in Administrator may get unrestricted file system access | Secomea | GateManager | Critical | 9.9 | 2022-03-04 21:20:10 | Deep Dive |
| CVE-2021-32004 | GateManager does not enforce strict hostname matching for WEB server | Secomea | GateManager | Low | 3.7 | 2021-11-22 20:32:45 | Deep Dive |
| CVE-2021-32003 | Configuration service port remains open 10 minutes after reboot even when already provisioned | Secomea | SiteManager | High | 8.0 | 2021-08-05 20:33:30 | Deep Dive |
| CVE-2021-32002 | SiteManager troubleshooter allows access without authentication from local network | Secomea | SiteManager | Medium | 4.3 | 2021-08-05 20:33:27 | Deep Dive |
| CVE-2020-29030 | Insufficient CSRF guards | Secomea | GateManager | High | 8.1 | 2021-03-05 19:15:27 | Deep Dive |
| CVE-2020-29020 | Reject Remote Management via Cellular UPLINK2 | Secomea | SiteManager | Critical | 9.1 | 2021-03-05 19:12:30 | Deep Dive |
| CVE-2020-29028 | Reflected XSS issues | Secomea | GateManager | Medium | 6.3 | 2021-03-05 19:10:00 | Deep Dive |
| CVE-2020-29029 | XSS issue due to insufficient sanitization of input field | Secomea | GateManager | High | 7.3 | 2021-03-05 19:08:22 | Deep Dive |
| CVE-2020-29032 | Add integrity check of GateManager firmware | Secomea | GateManager | High | 8.4 | 2021-03-05 16:58:27 | Deep Dive |
| CVE-2020-29027 | Reflected Cross Site Scripting | Secomea | SiteManager | Medium | 5.4 | 2021-02-16 15:48:59 | Deep Dive |
| CVE-2020-29025 | DOM-based Javascript injection | Secomea | SiteManager Embedded (SM-E) | Medium | 5.4 | 2021-02-16 15:45:49 | Deep Dive |
| CVE-2020-29023 | CSV Formula Injection possible due to improper fields escaping in GateManager | Secomea | GateManager | Low | 3.5 | 2021-02-16 15:14:57 | Deep Dive |
| CVE-2020-29022 | Host Header Injection allowing web cache poisoning attacks | Secomea | GateManager | Medium | 5.3 | 2021-02-16 15:08:36 | Deep Dive |
| CVE-2020-29024 | Missing HtppOnly and Secure flags | Secomea | GateManager | Medium | 5.3 | 2021-02-16 15:07:42 | Deep Dive |