Skip to main content

Gatemanager

5 CVEs product

Monthly

CVE-2025-14716 MEDIUM PATCH This Month

An improper authentication vulnerability in Secomea GateManager's webserver modules allows authenticated users to bypass authentication controls and access resources they should not be permitted to access. This affects GateManager version 11.4.0 and potentially other versions within the 11.4 release line. An attacker with valid login credentials can exploit this flaw to gain unauthorized access to sensitive information, achieving high confidentiality impact without modifying data or degrading availability.

Authentication Bypass Gatemanager
NVD VulDB
CVSS 3.1
6.5
EPSS
0.0%
CVE-2023-0317 MEDIUM This Month

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Gatemanager
NVD
CVSS 3.1
4.9
EPSS
0.5%
CVE-2022-2752 HIGH This Week

A vulnerability in the web server of Secomea GateManager allows a local user to impersonate as the previous user under some failed login conditions. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Gatemanager
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-38123 HIGH This Week

Improper Input Validation of plugin files in Administrator Interface of Secomea GateManager allows a server administrator to inject code into the GateManager interface. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection Gatemanager
NVD
CVSS 3.1
7.2
EPSS
0.7%
CVE-2022-25786 MEDIUM This Month

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Gatemanager
NVD
CVSS 3.1
4.9
EPSS
0.7%
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

An improper authentication vulnerability in Secomea GateManager's webserver modules allows authenticated users to bypass authentication controls and access resources they should not be permitted to access. This affects GateManager version 11.4.0 and potentially other versions within the 11.4 release line. An attacker with valid login credentials can exploit this flaw to gain unauthorized access to sensitive information, achieving high confidentiality impact without modifying data or degrading availability.

Authentication Bypass Gatemanager
NVD VulDB
EPSS 1% CVSS 4.9
MEDIUM This Month

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Gatemanager
NVD
EPSS 0% CVSS 7.8
HIGH This Week

A vulnerability in the web server of Secomea GateManager allows a local user to impersonate as the previous user under some failed login conditions. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Gatemanager
NVD
EPSS 1% CVSS 7.2
HIGH This Week

Improper Input Validation of plugin files in Administrator Interface of Secomea GateManager allows a server administrator to inject code into the GateManager interface. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection Gatemanager
NVD
EPSS 1% CVSS 4.9
MEDIUM This Month

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Gatemanager
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy