Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gallagher command centre vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2020-16103
Type confusion in Gallagher Command Centre Server allows a remote malicious user to crash the server or possibly cause remote code execution. This issue affects: Gallagher Command Centre 8.30 versions before 8.30.1236(MR1); 8.20 versions before 8.20.1166(MR3); 8.10 versions befor...
Gallagher Command Centre
Gallagher Command Centre 8.10.1211
Gallagher Command Centre 8.20.1166
Gallagher Command Centre 8.30.1236
5
CVSSv2
CVE-2020-16100
It is possible for an unauthenticated remote DCOM websocket connection to crash the Command Centre service's DCOM websocket thread due to improper shutdown of closed websocket connections, preventing it from accepting future DCOM websocket (Configuration Client) connections....
Gallagher Command Centre
Gallagher Command Centre 8.00.1228
Gallagher Command Centre 8.10.1211
Gallagher Command Centre 8.20.1166
NA
CVE-2023-46686
A reliance on untrusted inputs in a security decision could be exploited by a privileged user to configure the Gallagher Command Centre Diagnostics Service to use less secure communication protocols. This issue affects: Gallagher Diagnostics Service prior to v1.3.0 (distributed ...
Gallagher Command Centre
Gallagher Command Centre 9.00.1507
3.5
CVSSv2
CVE-2020-16099
In Gallagher Command Centre v8.20 prior to v8.20.1093(MR2) it is possible to create Guard Tour events that when accessed via things like reporting cause clients to temporarily hang or disconnect.
Gallagher Command Centre
Gallagher Command Centre 8.20.1093
NA
CVE-2023-23584
An observable response discrepancy in the Gallagher Command Centre RESTAPI allows an insufficiently-privileged user to infer the presence of items that would not otherwise be viewable. This issue affects: Gallagher Command Centre 8.70 prior to vEL8.70.1787 (MR2), 8.60 prior to v...
Gallagher Command Centre
NA
CVE-2023-23568
Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Personal Data Fields. This issue affects Command Centre: vEL 8.90 prior to vEL8.90.1318 (MR1), vEL8.80 prior to vEL8.80.1192 (MR2), vEL8.70 prior to vEL8.70.2185...
Gallagher Command Centre
NA
CVE-2023-23570
Client-Side enforcement of Server-Side security for the Command Centre server could be bypassed and lead to invalid configuration with undefined behavior. This issue affects: Gallagher Command Centre 8.90 prior to vEL8.90.1620 (MR2), all versions of 8.80 and prior.
Gallagher Command Centre
4
CVSSv2
CVE-2021-23136
Improper Authorization vulnerability in Gallagher Command Centre Server allows macro overrides to be performed by an unprivileged Command Centre Operator. This issue affects: Gallagher Command Centre 8.40 versions before 8.40.1888 (MR3); 8.30 versions before 8.30.1359 (MR3); 8.20...
Gallagher Command Centre
5
CVSSv2
CVE-2021-23146
An Incomplete Comparison with Missing Factors vulnerability in the Gallagher Controller allows an malicious user to bypass PIV verification. This issue affects: Gallagher Command Centre 8.40 versions before 8.40.1888 (MR3); 8.30 versions before 8.30.1359 (MR3); 8.20 versions befo...
Gallagher Command Centre
4
CVSSv2
CVE-2021-23193
Improper privilege validation vulnerability in COM Interface of Gallagher Command Centre Server allows authenticated unprivileged operators to retrieve sensitive information from the Command Centre Server. This issue affects: Gallagher Command Centre 8.50 versions before 8.50.204...
Gallagher Command Centre
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »