Schlumberger

**Name of the Vulnerable Software and Affected Versions** Secomea SiteManager versions prior to 9.6.621421014 **Description** A Cross-site Scripting (XSS) issue in the log view of Secomea SiteManager allows a logged-in user to store JavaScript for later execution. **Recommendations** For versions prior to 9.6.621421014, update to version 9.6.621421014 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Secomea GateManager versions prior to 9.6.621421014 **Description** The issue is related to permission problems in the LinkManager web portal of Secomea GateManager, allowing a logged-in LinkManager user to access stored SiteManager backup files. **Recommendations** For versions prior to 9.6.621421014, update to version 9.6.621421014 or later to resolve the issue. As a temporary workaround, consider restricting access to the LinkManager web portal to minimize the risk of exploitation.