Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gallagher command centre vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2022-26348
Command Centre Server is vulnerable to SQL Injection via Windows Registry settings for date fields on the server. The Windows Registry setting allows an attacker using the Visitor Management Kiosk, an application designed for public use, to invoke an arbitrary SQL query that has ...
Gallagher Command Centre
4
CVSSv2
CVE-2021-23193
Improper privilege validation vulnerability in COM Interface of Gallagher Command Centre Server allows authenticated unprivileged operators to retrieve sensitive information from the Command Centre Server. This issue affects: Gallagher Command Centre 8.50 versions before 8.50.204...
Gallagher Command Centre
4.6
CVSSv2
CVE-2021-23197
Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions before 8.50.2048 (MR3) ;
Gallagher Command Centre
4.3
CVSSv2
CVE-2021-23155
Improper validation of the cloud certificate chain in Mobile Client allows man-in-the-middle attack to impersonate the legitimate Command Centre Server. This issue affects: Gallagher Command Centre Mobile Client for Android 8.60 versions before 8.60.065; version 8.50 and prior ve...
Gallagher Command Centre Mobile Client
6.8
CVSSv2
CVE-2021-23162
Improper validation of the cloud certificate chain in Mobile Connect allows man-in-the-middle attack to impersonate the legitimate Command Centre Server. This issue affects: Gallagher Command Centre Mobile Connect for Android 15 versions before 15.04.040; version 14 and prior ver...
Gallagher Command Centre Mobile Connect
5
CVSSv2
CVE-2021-23146
An Incomplete Comparison with Missing Factors vulnerability in the Gallagher Controller allows an malicious user to bypass PIV verification. This issue affects: Gallagher Command Centre 8.40 versions before 8.40.1888 (MR3); 8.30 versions before 8.30.1359 (MR3); 8.20 versions befo...
Gallagher Command Centre
4.3
CVSSv2
CVE-2021-23167
Improper certificate validation vulnerability in SMTP Client allows man-in-the-middle attack to retrieve sensitive information from the Command Centre Server. This issue affects: Gallagher Command Centre 8.50 versions before 8.50.2048 (MR3); 8.40 versions before 8.40.2063 (MR4); ...
Gallagher Command Centre
4
CVSSv2
CVE-2021-23136
Improper Authorization vulnerability in Gallagher Command Centre Server allows macro overrides to be performed by an unprivileged Command Centre Operator. This issue affects: Gallagher Command Centre 8.40 versions before 8.40.1888 (MR3); 8.30 versions before 8.30.1359 (MR3); 8.20...
Gallagher Command Centre
6.5
CVSSv2
CVE-2021-23140
Improper Authorization vulnerability in Gallagher Command Centre Server allows command line macros to be modified by an unauthorised Command Centre Operator. This issue affects: Gallagher Command Centre 8.40 versions before 8.40.1888 (MR3); 8.30 versions before 8.30.1359 (MR3); 8...
Gallagher Command Centre
3.5
CVSSv2
CVE-2021-23230
A SQL Injection vulnerability in the OPCUA interface of Gallagher Command Centre allows a remote unprivileged Command Centre Operator to modify Command Centre databases undetected. This issue affects: Gallagher Command Centre 8.40 versions before 8.40.1888 (MR3); 8.30 versions be...
Gallagher Command Centre
Gallagher Command Centre 8.10.1284
Gallagher Command Centre 8.20.1259
Gallagher Command Centre 8.30.1359
Gallagher Command Centre 8.40.1888
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »