CVEリスト - 高リスク・悪用確認済み脆弱性

NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。

Assigner(CNA/発行元):[email protected] この条件を外す

CVSS スコア
表示中 120 / 43
«« 先頭 « 前へ 1 / 3 次へ »
CVE 説明 CVSS 最大値 EPSS(%) 公開 更新
CVE-2025-14716 Improper Authentication vulnerability in Secomea GateManager (webserver modules) allows Authentication Bypass.This issue affects GateManager: 11.4;0. 6.5 0.35% 2026-03-19 2026-06-17
CVE-2024-1969 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Secomea GateManager (webserver modules) allows crash of GateManager.This issue affects GateManager: from 9.7 before 11.2.624095033. 8.2 0.46% 2024-04-29 2026-06-17
CVE-2024-1579 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Secomea GateManager (Webserver modules) allows Session Hijacking.This issue affects GateManager: before 11.2.624071020. 8.1 0.52% 2024-04-29 2026-06-17
CVE-2023-3675 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Secomea GateManager (Web GUI) allows Reading Data from System Resources.This issue affects GateManager: from 11.0.623074018 before 11.0.623373051. 6.5 0.54% 2024-04-18 2026-06-17
CVE-2023-2912 Use After Free vulnerability in Secomea SiteManager Embedded allows Obstruction. 5.9 0.45% 2023-07-17 2026-06-17
CVE-2023-0317 Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. 4.9 0.52% 2023-04-19 2026-06-17
CVE-2022-4308 Plaintext Storage of a Password vulnerability in Secomea GateManager (USB wizard) allows Authentication abuse on SiteManager, if the generated file is leaked. 6.1 0.17% 2023-04-19 2026-06-17
CVE-2022-38125 Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager (FTP Agent modules) allows Exploiting Trust in Client. 2.9 0.16% 2023-04-19 2026-06-17
CVE-2022-38124 Debug tool in Secomea SiteManager allows logged-in administrator to modify system state in an unintended manner. 5.7 0.51% 2022-12-13 2026-06-17
CVE-2022-38123 Improper Input Validation of plugin files in Administrator Interface of Secomea GateManager allows a server administrator to inject code into the GateManager interface. This issue affects: Secomea GateManager versions prior to 10.0. 8.7 0.75% 2022-12-06 2026-06-17
CVE-2022-2752 A vulnerability in the web server of Secomea GateManager allows a local user to impersonate as the previous user under some failed login conditions. This issue affects: Secomea GateManager versions from 9.4 through 9.7. 5.5 0.18% 2022-12-09 2026-06-17
CVE-2022-25787 Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea GateManager allows system administrator to hijack connection. This issue affects: Secomea GateManager all versions prior to 9.7. 7.5 0.23% 2022-05-04 2026-06-17
CVE-2022-25786 Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. This issue affects: GateManager all versions prior to 9.7. 4.9 0.67% 2022-05-04 2026-06-17
CVE-2022-25785 Stack-based Buffer Overflow vulnerability in SiteManager allows logged-in or local user to cause arbitrary code execution. This issue affects: Secomea SiteManager all versions prior to 9.7. 6.6 0.90% 2022-05-04 2026-06-17
CVE-2022-25784 Cross-site Scripting (XSS) vulnerability in Web GUI of SiteManager allows logged-in user to inject scripting. This issue affects: Secomea SiteManager all versions prior to 9.7. 9.1 0.56% 2022-05-04 2026-06-17
CVE-2022-25783 Insufficient Logging vulnerability in web server of Secomea GateManager allows logged in user to issue improper queries without logging. This issue affects: Secomea GateManager versions prior to 9.7. 4.3 0.57% 2022-05-04 2026-06-17
CVE-2022-25782 Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and update privileged information. This issue affects: Secomea GateManager versions prior to 9.7. 5.4 0.46% 2022-05-04 2026-06-17
CVE-2022-25781 Cross-site Scripting (XSS) vulnerability in Web UI of Secomea GateManager allows phishing attacker to inject javascript or html into logged in user session. 4.2 0.45% 2022-05-04 2026-06-17
CVE-2022-25780 Information Exposure vulnerability in web UI of Secomea GateManager allows logged in user to query devices outside own scope. 4.3 0.57% 2022-05-04 2026-06-17
CVE-2022-25779 Logging of Excessive Data vulnerability in audit log of Secomea GateManager allows logged in user to write text entries in audit log. This issue affects: Secomea GateManager versions prior to 9.7. 4.3 0.51% 2022-05-04 2026-06-17
«« 先頭 « 前へ 1 / 3 次へ »
cvelogic Threat Intelligence