CVE-2020-14510
25.08.2020, 14:15
GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| secomea | gatemanager_8250_firmware | 9.2c:c |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| secomea | gatemanager | 𝑥 < 9.2c | CNA |
Common Weakness Enumeration
- CWE-193 - Off-by-one ErrorA product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.
- CWE-798 - Use of Hard-coded CredentialsThe software contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.