PT-2022-10060 · Secomea · Secomea Gatemanager

Published

2022-03-11

Updated

2022-03-18

CVE-2021-32009

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Secomea GateManager versions prior to 9.6.621421014

Description A Cross-site Scripting (XSS) issue in the firmware section of Secomea GateManager allows a logged-in user to inject JavaScript into a browser session.

Recommendations For Secomea GateManager versions prior to 9.6.621421014, update to version 9.6.621421014 or later to resolve the issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2021-32009

Affected Products

Secomea Gatemanager

PT-2022-10060 · Secomea · Secomea Gatemanager

CVE-2021-32009

Weakness Enumeration

Related Identifiers

Affected Products

References · 4