CVE-2021-32010

EPSS 0.21%
Veröffentlicht 04.05.2022 14:15:07
Zuletzt bearbeitet 21.11.2024 06:06:42
Quelle VulnerabilityReporting@secomea
CVE-Watchlists
Login
Unerledigt
Login

Clients may connect to a GateManager with TLS 1.0

Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to 9.7.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 4

NVD 14 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Secomea ≫ Sitemanager 1129 Firmware Version < 9.7.622134021

Secomea ≫ Sitemanager 1129 Version-

Secomea ≫ Sitemanager 1139 Firmware Version < 9.7.622134021

Secomea ≫ Sitemanager 1139 Version-

Secomea ≫ Sitemanager 1149 Firmware Version < 9.7.622134021

Secomea ≫ Sitemanager 1149 Version-

Secomea ≫ Sitemanager 3329 Firmware Version < 9.7.622134021

Secomea ≫ Sitemanager 3329 Version-

Secomea ≫ Sitemanager 3339 Firmware Version < 9.7.622134021

Secomea ≫ Sitemanager 3339 Version-

Secomea ≫ Sitemanager 3349 Firmware Version < 9.7.622134021

Secomea ≫ Sitemanager 3349 Version-

Secomea ≫ Sitemanager 3529 Firmware Version < 9.7.622134021

Secomea ≫ Sitemanager 3529 Version-

Secomea ≫ Sitemanager 3539 Firmware Version < 9.7.622134021

Secomea ≫ Sitemanager 3539 Version-

Secomea ≫ Sitemanager 3549 Firmware Version < 9.7.622134021

Secomea ≫ Sitemanager 3549 Version-

Secomea ≫ Linkmanager Version < 9.7.622134021

Secomea ≫ Gatemanager 4250 Firmware Version < 9.7.622134021

Secomea ≫ Gatemanager 4250 Version-

Secomea ≫ Gatemanager 4260 Firmware Version < 9.7.622134021

Secomea ≫ Gatemanager 4260 Version-

Secomea ≫ Gatemanager 8250 Firmware Version < 9.7.622134021

Secomea ≫ Gatemanager 8250 Version-

Secomea ≫ Gatemanager 9250 Firmware Version < 9.7.622134021

Secomea ≫ Gatemanager 9250 Version-

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.21%	0.112

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.1	2.2	5.9	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P
VulnerabilityReporting@secomea.com	5.6	2.2	3.4	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-326 Inadequate Encryption Strength

The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.

https://www.secomea.com/support/cybersecurity-advisory/

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-32010

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-32010

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-32010

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2021-32010