Improper Handling of Insufficient Privileges

CVE-2021-32006

Medium

5/10

Summary

This issue affects: Secomea GateManager Version 9.6.621421014 and all prior versions. Permission Issues vulnerability in LinkManager web portal of Secomea GateManager allows logged in LinkManager user to access stored SiteManager backup files.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: CHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: LOW
Availability Impact: NONE

CWE-274 - Improper Handling of Insufficient Privileges

The software does not handle or incorrectly handles when it has insufficient privileges to perform an operation, leading to resultant weaknesses.

References

Advisory Timeline

Published Mar 10, 2022

Improper Handling of Insufficient Privileges

CVE-2021-32006

Summary

CWE-274 - Improper Handling of Insufficient Privileges

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS