CVE-2023-23576

🗓️ 18 Dec 2023 21:59:38Reported by GallagherType

Incorrect behavior order in Command Centre Server enables prolonged privileged access after network outage using competencies

Reporter	Title	Published	Views	Family All 8
CNNVD	Gallagher Command Centre security breach	18 Dec 202300:00	–	cnnvd
Cvelist	CVE-2023-23576	18 Dec 202321:59	–	cvelist
EUVD	EUVD-2023-27676	3 Oct 202520:07	–	euvd
NVD	CVE-2023-23576	18 Dec 202322:15	–	nvd
OSV	CVE-2023-23576	18 Dec 202322:15	–	osv
Prion	Design/Logic Flaw	18 Dec 202322:15	–	prion
Positive Technologies	PT-2023-19055 · Gallagher · Gallagher Command Centre	18 Dec 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-23576	23 May 202502:38	–	redhatcve

NVD

Node

gallagher command_centreRange≤8.50

gallagher command_centreRange8.60–8.60.2550

gallagher command_centreRange8.70–8.70.2375

gallagher command_centreRange8.80–8.80.1369

gallagher command_centreRange8.90–8.90.1620

[
  {
    "defaultStatus": "unaffected",
    "product": "Command Centre Server",
    "vendor": "Gallagher",
    "versions": [
      {
        "lessThanOrEqual": "8.50",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.90.1620 (MR2)",
        "status": "affected",
        "version": "8.90",
        "versionType": "custom"
      },
      {
        "lessThan": "8.80.1369 (MR3)",
        "status": "affected",
        "version": "8.80",
        "versionType": "custom"
      },
      {
        "lessThan": "8.70.2375 (MR5)",
        "status": "affected",
        "version": "8.70",
        "versionType": "custom"
      },
      {
        "lessThan": "8.60.2550 (MR7)",
        "status": "affected",
        "version": "8.60",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
security	www.security.gallagher.com/Security-Advisories/CVE-2023-23576

17 Jun 2026 05:37Current

4.7Medium risk

Vulners AI Score4.7

CVSS 3.14.3

EPSS0.00281

CWE-696