CVE-2022-25782

Medium

Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and update…

Secomea·CWE-274·Published 2022-05-04

CVSS

5.4

EPSS

0.00

KEV

Exploits

cve.orgen

221 chars

Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and update privileged information. This issue affects: Secomea GateManager versions prior to 9.7.

NVDen

221 chars

NVDes

282 chars

Una vulnerabilidad de Manejo Inapropiado de Privilegios en la Interfaz de Usuario Web de Secomea GateManager permite al usuario que ha iniciado la sesión acceder a información privilegiada y actualizarla. Este problema afecta a: Las versiones de Secomea GateManager anteriores a 9.7

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.5	8.0	4.9	AV:N/AC:L/Au:S/C:P/I:P/A:N
3.1	Primary	cve.org	5.4	—	—	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N