Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
GateManager Audit Message Spoofing Vulnerability
Vulnerability Description
The information disclosure vulnerability present in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 versions <9.2.620236042 allows authenticated users to generate fake audit log messages.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
日志输出的转义处理不恰当
Vulnerability Title
Secomea GateManager 和 SiteManager 安全漏洞
Vulnerability Description
Secomea GateManager和Secomea SiteManager都是丹麦Secomea公司的产品。GateManager是一款远程访问服务器产品。Secomea SiteManager是一个应用软件。提供一个工业设备远程维护功能。 GateManager 和SiteManager 存在安全漏洞,攻击者可利用该漏洞使用经过身份验证的用户可以通过选择的虚构审核消息/警报来欺骗外域用户。以下产品及版本受到影响:SiteManager v9.2.620236042之前版本,GateManager 4
CVSS Information
N/A
Vulnerability Type
N/A