CVE-2020-14500
25.08.2020, 14:15
Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data.Enginsight
| Vendor | Product | Version |
|---|---|---|
| secomea | gatemanager_8250_firmware | 9.2c:c |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-158 - Improper Neutralization of Null Byte or NUL CharacterThe software receives input from an upstream component, but it does not neutralize or incorrectly neutralizes NUL characters or null bytes when they are sent to a downstream component.
- CWE-476 - NULL Pointer DereferenceA NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.