CVE-2021-32010 — MEDIUM (5.6)

Q: How severe is CVE-2021-32010?

CVE-2021-32010 has been rated MEDIUM with a CVSS base score of 5.6/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2021-32010?

Check the references section above for vendor advisories and patch information. Affected products include: Secomea Sitemanager 1129 Firmware, Secomea Sitemanager 1129, Secomea Sitemanager 1139 Firmware, Secomea Sitemanager 1139, Secomea Sitemanager 1149 Firmware.

Vulnerability Description

Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to 9.7.

CVSS Score

5.6

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Secomea	Sitemanager 1129 Firmware	< 9.7.622134021
Secomea	Sitemanager 1129	-
Secomea	Sitemanager 1139 Firmware	< 9.7.622134021
Secomea	Sitemanager 1139	-
Secomea	Sitemanager 1149 Firmware	< 9.7.622134021
Secomea	Sitemanager 1149	-
Secomea	Sitemanager 3329 Firmware	< 9.7.622134021
Secomea	Sitemanager 3329	-
Secomea	Sitemanager 3339 Firmware	< 9.7.622134021
Secomea	Sitemanager 3339	-
Secomea	Sitemanager 3349 Firmware	< 9.7.622134021
Secomea	Sitemanager 3349	-
Secomea	Sitemanager 3529 Firmware	< 9.7.622134021
Secomea	Sitemanager 3529	-
Secomea	Sitemanager 3539 Firmware	< 9.7.622134021
Secomea	Sitemanager 3539	-
Secomea	Sitemanager 3549 Firmware	< 9.7.622134021
Secomea	Sitemanager 3549	-
Secomea	Linkmanager	< 9.7.622134021
Secomea	Gatemanager 4250 Firmware	< 9.7.622134021

Related Weaknesses (CWE)

CWE-326

References

https://www.secomea.com/support/cybersecurity-advisory/Vendor Advisory
https://www.secomea.com/support/cybersecurity-advisory/Vendor Advisory

FAQ

What is CVE-2021-32010?

CVE-2021-32010 is a vulnerability with a CVSS score of 5.6 (MEDIUM). Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All version...

How severe is CVE-2021-32010?

CVE-2021-32010 has been rated MEDIUM with a CVSS base score of 5.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-32010?

Check the references section above for vendor advisories and patch information. Affected products include: Secomea Sitemanager 1129 Firmware, Secomea Sitemanager 1129, Secomea Sitemanager 1139 Firmware, Secomea Sitemanager 1139, Secomea Sitemanager 1149 Firmware.