CVE-2022-38124

CVSS V2 None CVSS V3 None
Description
Debug tool in Secomea SiteManager allows logged-in administrator to modify system state in an unintended manner.
Overview
  • CVE ID
  • CVE-2022-38124
  • Assigner
  • VulnerabilityReporting@secomea.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-12-13T14:15:09
  • Last Modified Date
  • 2022-12-16T05:02:10
Weakness Enumerations
CWE URL
CWE-269 http://cwe.mitre.org/data/definitions/269.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:secomea:sitemanager_1129_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_1129:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_3329_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_3329:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_1529_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_1529:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_3529_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_3529:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_1139_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_1139:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_3339_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_3339:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_1539_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_1539:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_3539_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_3539:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_1149_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_1149:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_3349_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_3349:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_1549_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_1549:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:secomea:sitemanager_3549_firmware:*:*:*:*:*:*:*:* 1 OR 10.0.622425017
cpe:2.3:h:secomea:sitemanager_3549:-:*:*:*:*:*:*:* 0 OR
References
Reference URL Reference Tags
https://www.secomea.com/support/cybersecurity-advisory/
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2022-38124
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38124
History
Created Old Value New Value Data Type Notes
2022-12-13 15:15:10 Added to TrackCVE
2022-12-13 16:18:23 2022-12-13T14:15:09.947 2022-12-13T14:15:09 CVE Published Date updated
2022-12-13 16:18:23 2022-12-13T15:15:27 CVE Modified Date updated
2022-12-13 16:18:23 Received Awaiting Analysis Vulnerability Status updated
2022-12-14 18:15:31 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2022-12-18 04:35:06 2022-12-16T05:02:10 CVE Modified Date updated
2022-12-18 04:35:06 Undergoing Analysis Analyzed Vulnerability Status updated
2022-12-18 04:35:10 CWE-269 Weakness Enumeration new
2022-12-18 04:35:19 CPE Information updated