Cyber Resilience

CVE-2022-25783

Medium

Published: 04 May 2022

Published
04 May 2022
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS Score 0.0023 45.5th percentile
Risk Priority 9 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-25783 is a medium-severity Insufficient Logging (CWE-778) vulnerability in Secomea Gatemanager 4250 Firmware. Its CVSS base score is 4.3 (Medium).

Operationally, ranked at the 45.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Insufficient Logging vulnerability in web server of Secomea GateManager allows logged in user to issue improper queries without logging. This issue affects: Secomea GateManager versions prior to 9.7.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

secomea
gatemanager 4250 firmware
≤ 9.7.622134021
secomea
gatemanager 4260 firmware
≤ 9.7.622134021
secomea
gatemanager 8250 firmware
≤ 9.7.622134021
secomea
gatemanager 9250 firmware
≤ 9.7.622134021

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-778

Audit policy requires defining and implementing logging of security-relevant events, directly reducing insufficient logging.

addresses: CWE-778

Providing proof of performed actions necessitates sufficient logging of security-relevant events with attribution details.

addresses: CWE-778

Retaining audit records for a defined period ensures security-relevant events remain available for after-the-fact investigations, directly mitigating the risk that attackers can hide actions due to missing or purged log data.

addresses: CWE-778

Directly requires generation of audit records for specified events, preventing the absence of logging that allows undetected malicious activity.

addresses: CWE-778

Directly implements detailed session logging to address the weakness of insufficient logging.

addresses: CWE-778

Provides alternate logging mechanism to maintain audit trails when primary capability fails, directly reducing insufficient logging.

addresses: CWE-778

Employing coordination mechanisms ensures consistent and sufficient logging practices are applied when audit information crosses organizational boundaries.

addresses: CWE-778

This control requires identifying, specifying, and justifying event types for logging with a focus on adequacy for post-incident investigations, directly mitigating insufficient logging.

References