Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gallagher command centre vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-16103
Type confusion in Gallagher Command Centre Server allows a remote malicious user to crash the server or possibly cause remote code execution. This issue affects: Gallagher Command Centre 8.30 versions before 8.30.1236(MR1); 8.20 versions before 8.20.1166(MR3); 8.10 versions befor...
Gallagher Command Centre
Gallagher Command Centre 8.10.1211
Gallagher Command Centre 8.20.1166
Gallagher Command Centre 8.30.1236
5.5
CVSSv3
CVE-2020-7215
An issue exists in Gallagher Command Centre 7.x prior to 7.90.991(MR5), 8.00 prior to 8.00.1161(MR5), and 8.10 prior to 8.10.1134(MR4). External system configuration data (used for third party integrations such as DVR systems) were logged in the Command Centre event trail. Any au...
Gallagher Command Centre
Gallagher Command Centre 7.90.991
Gallagher Command Centre 8.00.1161
Gallagher Command Centre 8.10.1134
4.3
CVSSv3
CVE-2020-16099
In Gallagher Command Centre v8.20 prior to v8.20.1093(MR2) it is possible to create Guard Tour events that when accessed via things like reporting cause clients to temporarily hang or disconnect.
Gallagher Command Centre
Gallagher Command Centre 8.20.1093
7.1
CVSSv3
CVE-2023-46686
A reliance on untrusted inputs in a security decision could be exploited by a privileged user to configure the Gallagher Command Centre Diagnostics Service to use less secure communication protocols. This issue affects: Gallagher Diagnostics Service prior to v1.3.0 (distributed ...
Gallagher Command Centre
Gallagher Command Centre 9.00.1507
6.5
CVSSv3
CVE-2023-22428
Improper privilege validation in Command Centre Server allows authenticated operators to modify Division lineage. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 (MR2), vEL8.70 prior to vEL8.70.2185 (MR4), vEL8.60 prior to vEL8.60.2347 (MR6), vEL8.50 prior to vE...
Gallagher Command Centre
4.3
CVSSv3
CVE-2023-23584
An observable response discrepancy in the Gallagher Command Centre RESTAPI allows an insufficiently-privileged user to infer the presence of items that would not otherwise be viewable. This issue affects: Gallagher Command Centre 8.70 prior to vEL8.70.1787 (MR2), 8.60 prior to v...
Gallagher Command Centre
6.5
CVSSv3
CVE-2019-12492
Gallagher Command Centre prior to 7.80.939, 7.90.x prior to 7.90.961, and 8.x prior to 8.00.1128 allows arbitrary event creation and information disclosure via the FT Command Centre Service and FT Controller Service services.
Gallagher Command Centre
6.8
CVSSv3
CVE-2021-23167
Improper certificate validation vulnerability in SMTP Client allows man-in-the-middle attack to retrieve sensitive information from the Command Centre Server. This issue affects: Gallagher Command Centre 8.50 versions before 8.50.2048 (MR3); 8.40 versions before 8.40.2063 (MR4); ...
Gallagher Command Centre
7.8
CVSSv3
CVE-2021-23197
Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions before 8.50.2048 (MR3) ;
Gallagher Command Centre
8.1
CVSSv3
CVE-2021-23205
Improper Encoding or Escaping in Gallagher Command Centre Server allows a Command Centre Operator to alter the configuration of Controllers and other hardware items beyond their privilege. This issue affects: Gallagher Command Centre 8.40 versions before 8.40.1888 (MR3); 8.30 ver...
Gallagher Command Centre
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »