CVE-2023-24584

🗓️ 01 Jun 2023 04:08:35Reported by GallagherType

Controller 6000 buffer overflow vulnerability in web interface upload featur

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2023-24584	10 Jan 202519:07	–	circl
CNNVD	Gallagher Controller 6000 安全漏洞	1 Jun 202300:00	–	cnnvd
Cvelist	CVE-2023-24584 Controller 6000 buffer overflow via upload feature in web interface	1 Jun 202304:08	–	cvelist
EUVD	EUVD-2023-28599	3 Oct 202520:07	–	euvd
NVD	CVE-2023-24584	1 Jun 202305:15	–	nvd
OSV	CVE-2023-24584	1 Jun 202305:15	–	osv
Prion	Buffer overflow	1 Jun 202305:15	–	prion
Positive Technologies	PT-2023-19692 · Unknown · Controller 6000	1 Jun 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-24584	23 May 202504:55	–	redhatcve
Vulnrichment	CVE-2023-24584 Controller 6000 buffer overflow via upload feature in web interface	1 Jun 202304:08	–	vulnrichment

NVD

Node

gallagher controller_6000_firmwareRange<8.50.230201a

gallagher controller_6000_firmwareRange8.60–8.60.230201b

gallagher controller_6000_firmwareRange8.70–8.70.230201a

gallagher controller_6000_firmwareRange8.80–8.80.230201a

AND

gallagher controller_6000Match-

[
  {
    "vendor": "Gallagher",
    "product": "Controller 6000",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "vCR8.80.230201a",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "vCR8.70.230201a",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "vCR8.60.230201b",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "vCR8.50.230201a",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
security	www.security.gallagher.com/en-NZ/Security-Advisories/CVE-2023-24584

21 Nov 2024 07:48Current

9High risk

Vulners AI Score9

CVSS 3.17.5 - 9.8

EPSS0.00497

SSVC

CWE-120