Vulnerability Details CVE-2022-25787
Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea GateManager allows system administrator to hijack connection. This issue affects: Secomea GateManager all versions prior to 9.7.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 4.6
References
Products affected by CVE-2022-25787
-
cpe:2.3:h:secomea:gatemanager_4250:-
-
cpe:2.3:h:secomea:gatemanager_4260:-
-
cpe:2.3:h:secomea:gatemanager_8250:-
-
cpe:2.3:h:secomea:gatemanager_9250:-
-
cpe:2.3:o:secomea:gatemanager_4250_firmware:-
-
cpe:2.3:o:secomea:gatemanager_4250_firmware:9.0i
-
cpe:2.3:o:secomea:gatemanager_4260_firmware:-
-
cpe:2.3:o:secomea:gatemanager_4260_firmware:9.0g
-
cpe:2.3:o:secomea:gatemanager_4260_firmware:9.0i
-
cpe:2.3:o:secomea:gatemanager_8250_firmware:9.1b
-
cpe:2.3:o:secomea:gatemanager_8250_firmware:9.2
-
cpe:2.3:o:secomea:gatemanager_8250_firmware:9.2b
-
cpe:2.3:o:secomea:gatemanager_8250_firmware:9.2c
-
cpe:2.3:o:secomea:gatemanager_8250_firmware:9.3
-
cpe:2.3:o:secomea:gatemanager_8250_firmware:9.3a
-
cpe:2.3:o:secomea:gatemanager_8250_firmware:9.4
-
cpe:2.3:o:secomea:gatemanager_8250_firmware:9.4.621054022
-
cpe:2.3:o:secomea:gatemanager_9250_firmware:-
-
cpe:2.3:o:secomea:gatemanager_9250_firmware:9.0g
-
cpe:2.3:o:secomea:gatemanager_9250_firmware:9.0i