CVE-2025-14716
Deferred Deferred - Pending Action
Authentication Bypass in Secomea GateManager Webserver Module

Publication date: 2026-03-19

Last updated on: 2026-05-19

Assigner: Secomea A/S

Description
Improper Authentication vulnerability in Secomea GateManager (webserver modules) allows Authentication Bypass.This issue affects GateManager: 11.4;0.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-19
Last Modified
2026-05-19
Generated
2026-06-16
AI Q&A
2026-03-19
EPSS Evaluated
2026-06-15
NVD
CVE-2025-14716
EUVD
EUVD-2025-208869
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
secomea gatemanager to 11.4 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-287 When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-14716 is an Improper Authentication vulnerability found in the Secomea GateManager webserver modules. This vulnerability allows an attacker to bypass authentication mechanisms, meaning they can gain unauthorized access without proper credentials. It affects GateManager version 11.4;0.

Impact Analysis

This vulnerability can have a significant impact because it allows unauthorized users to bypass authentication controls and potentially access sensitive systems or data. According to the CVSS v3.1 score of 6.5, the vulnerability is of medium severity with a high impact on confidentiality but no impact on integrity or availability. An attacker exploiting this could gain access to confidential information without permission, which could lead to data breaches or unauthorized system control.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

[{'type': 'paragraph', 'content': 'Secomea addresses valid vulnerabilities through their R&D department by providing product fixes, remediations, or mitigations.'}, {'type': 'paragraph', 'content': 'Fixes for vulnerabilities like CVE-2025-14716 are released as part of standard product releases and deployed to Secomea-hosted solutions as available.'}, {'type': 'paragraph', 'content': "It is recommended to monitor Secomea's cybersecurity advisories for updates and apply any released patches promptly."}] [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-14716. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart