What is CVE-2022-38125?

CVE-2022-38125 is a low-severity vulnerability in Secomea Sitemanager, classified under CWE-923. CVSS score: 2.9/10. Published 2023-04-19.

How severe is CVE-2022-38125?

Low severity. CVSS v3 base score is 2.9 out of 10.

Vulnerability in Secomea Sitemanager

CVE-2022-38125

Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager (FTP Agent modules) allows Exploiting Trust in Client.

EPSS: 0.001 (17.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 2.9 (Low). Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N.

Affected products

Secomea Sitemanager — versions 5.0

Weakness classification (CWE)

CWE-923

References

www.secomea.com/support/cybersecurity-advisory/

Frequently asked questions

What is CVE-2022-38125?: CVE-2022-38125 is a low-severity vulnerability in Secomea Sitemanager, classified under CWE-923. CVSS score: 2.9/10. Published 2023-04-19.
How severe is CVE-2022-38125?: Low severity. CVSS v3 base score is 2.9 out of 10.