CVE-2020-29029

HIGH

Secomea GateManager < 9.4.62105402 - Cross-Site Scripting in Web GUI

Title source: llm
STIX 2.1

Description

Improper Input Validation, Cross-site Scripting (XSS) vulnerability in Web GUI of Secomea GateManager allows an attacker to execute arbitrary javascript code. This issue affects: Secomea GateManager all versions prior to 9.4.

References (1)

Core 1
Core References

Scores

CVSS v3 7.3
EPSS 0.0078
EPSS Percentile 51.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Details

CWE
CWE-20 CWE-79
Status published
Products (1)
secomea/gatemanager_firmware < 9.4.62105402
Published Mar 05, 2021
Tracked Since Feb 18, 2026