CVE-2021-32010: Weak Encryption
First published: Wed May 04 2022(Updated: )
Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to 9.7.
Credit: VulnerabilityReporting@secomea.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Secomea Sitemanager 1129 Firmware | <9.7.622134021 | |
| Secomea Sitemanager 1129 | ||
| Secomea Sitemanager 1139 Firmware | <9.7.622134021 | |
| Secomea Sitemanager 1139 | ||
| Secomea Sitemanager 1149 Firmware | <9.7.622134021 | |
| Secomea Sitemanager 1149 | ||
| Secomea Sitemanager 3329 Firmware | <9.7.622134021 | |
| Secomea Sitemanager 3329 | ||
| Secomea Sitemanager 3339 Firmware | <9.7.622134021 | |
| Secomea Sitemanager 3339 | ||
| Secomea Sitemanager 3349 Firmware | <9.7.622134021 | |
| Secomea Sitemanager 3349 | ||
| Secomea Sitemanager 3529 Firmware | <9.7.622134021 | |
| Secomea Sitemanager 3529 | ||
| Secomea Sitemanager 3539 Firmware | <9.7.622134021 | |
| Secomea Sitemanager 3539 | ||
| Secomea Sitemanager 3549 Firmware | <9.7.622134021 | |
| Secomea Sitemanager 3549 | ||
| Secomea LinkManager | <9.7.622134021 | |
| Secomea Gatemanager 4250 Firmware | <9.7.622134021 | |
| Secomea Gatemanager 4250 | ||
| Secomea Gatemanager 4260 Firmware | <9.7.622134021 | |
| Secomea Gatemanager 4260 | ||
| Secomea Gatemanager 8250 Firmware | <9.7.622134021 | |
| Secomea Gatemanager 8250 | ||
| Secomea Gatemanager 9250 Firmware | <9.7.622134021 | |
| Secomea Gatemanager 9250 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this Secomea TLS stack vulnerability?
The vulnerability ID is CVE-2021-32010.
What is the severity rating of CVE-2021-32010?
The severity rating of CVE-2021-32010 is 8.1, which is considered high.
Which versions of Secomea SiteManager are affected by CVE-2021-32010?
All versions of Secomea SiteManager prior to 9.7 are affected by CVE-2021-32010.
How does CVE-2021-32010 facilitate man-in-the-middle attacks?
CVE-2021-32010 facilitates man-in-the-middle attacks due to inadequate encryption strength in the TLS stack of Secomea SiteManager, LinkManager, and GateManager.
How do I fix CVE-2021-32010?
To fix CVE-2021-32010, update Secomea SiteManager, LinkManager, and GateManager to version 9.7 or later.
- collector/nvd-index
- vendor/secomea
- canonical/secomea sitemanager 1129 firmware
- canonical/secomea sitemanager 1129
- canonical/secomea sitemanager 1139 firmware
- canonical/secomea sitemanager 1139
- canonical/secomea sitemanager 1149 firmware
- canonical/secomea sitemanager 1149
- canonical/secomea sitemanager 3329 firmware
- canonical/secomea sitemanager 3329
- canonical/secomea sitemanager 3339 firmware
- canonical/secomea sitemanager 3339
- canonical/secomea sitemanager 3349 firmware
- canonical/secomea sitemanager 3349
- canonical/secomea sitemanager 3529 firmware
- canonical/secomea sitemanager 3529
- canonical/secomea sitemanager 3539 firmware
- canonical/secomea sitemanager 3539
- canonical/secomea sitemanager 3549 firmware
- canonical/secomea sitemanager 3549
- canonical/secomea linkmanager
- canonical/secomea gatemanager 4250 firmware
- canonical/secomea gatemanager 4250
- canonical/secomea gatemanager 4260 firmware
- canonical/secomea gatemanager 4260
- canonical/secomea gatemanager 8250 firmware
- canonical/secomea gatemanager 8250
- canonical/secomea gatemanager 9250 firmware
- canonical/secomea gatemanager 9250