What is CVE-2020-29022?

CVE-2020-29022 is a medium-severity vulnerability in Secomea Gatemanager, classified under CWE-159. CVSS score: 5.3/10. Published 2021-02-16.

How severe is CVE-2020-29022?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Secomea Gatemanager

CVE-2020-29022

Failure to Sanitize host header value on output in the GateManager Web server could allow an attacker to conduct web cache poisoning attacks. This issue affects Secomea GateManager all versions prior to 9.3

EPSS: 0.002 (44.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.

Affected products

Secomea Gatemanager — versions all

Weakness classification (CWE)

CWE-159

References

www.secomea.com/support/cybersecurity-advisory/ (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-29022?: CVE-2020-29022 is a medium-severity vulnerability in Secomea Gatemanager, classified under CWE-159. CVSS score: 5.3/10. Published 2021-02-16.
How severe is CVE-2020-29022?: Medium severity. CVSS v3 base score is 5.3 out of 10.