7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L
7.1 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
18.1%
Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Competencies.
This issue affects Command Centre: vEL8.90 prior to vEL8.90.1318 (MR1), vEL8.80 prior to vEL8.80.1192 (MR2), vEL8.70 prior to vEL8.70.2185 (MR4),
vEL8.60 prior to vEL8.60.2347 (MR6),
vEL8.50 prior to vEL8.50.2831 (MR8), all versions vEL8.40 and prior.
[
{
"vendor": "Gallagher",
"product": "Command Centre",
"versions": [
{
"status": "affected",
"version": "vEL8.40"
},
{
"status": "affected",
"version": "vEL8.50",
"lessThan": "2831",
"versionType": "custom"
},
{
"status": "affected",
"version": "vEL8.60",
"lessThan": "2347",
"versionType": "custom"
},
{
"status": "affected",
"version": "vEL8.70",
"lessThan": "2185",
"versionType": "custom"
},
{
"status": "affected",
"version": "vEL8.80",
"lessThan": "1192",
"versionType": "custom"
},
{
"status": "affected",
"version": "vEL8.90",
"lessThan": "1318",
"versionType": "custom"
}
],
"defaultStatus": "unaffected"
}
]
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L
7.1 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
18.1%