OFF-BY-ONE ERROR CWE-193

Vulnerability

An off-by-one error (CWE-193) exists in Secomea GateManager versions prior to 9.2c. The vulnerability can be triggered by sending a specially crafted request to the affected service, potentially allowing an attacker to overwrite adjacent memory boundaries [1].

Exploitation

To exploit this vulnerability, an attacker needs network access to the GateManager instance. No authentication is required, but the attack complexity is rated as high (AV:N/AC:H) [1]. The attacker must carefully craft a network packet that induces an off-by-one write, likely requiring trial and error or reverse engineering to succeed.

Impact

Successful exploitation can lead to remote code execution in the context of the affected process or a denial-of-service condition. While the CVSS vector indicates high impact to confidentiality, integrity, and availability, the exact scope is limited to the affected system (no scope change) [1]. The vulnerability is rated CVSS v3 base score 8.1.

Mitigation

The vendor, Secomea, has released version 9.2c which addresses this vulnerability. Users should update to 9.2c or later immediately [1]. No workarounds are documented. The vulnerability is not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog as of the publication date.