EUVD-2021-10254

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Improper Authorization in Gallagher Command Centre Server allows unprivileged operator macro overrides.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2021-23136	11 Jun 202120:37	–	circl
CNNVD	Gallagher Command Centre Server 安全漏洞	11 Jun 202100:00	–	cnnvd
CNVD	Gallagher Command Center Server Access Control Error Vulnerability (CNVD-2021-43485)	17 Jun 202100:00	–	cnvd
CVE	CVE-2021-23136	11 Jun 202115:46	–	cve
Cvelist	CVE-2021-23136	11 Jun 202115:46	–	cvelist
NVD	CVE-2021-23136	11 Jun 202116:15	–	nvd
OSV	CVE-2021-23136	11 Jun 202116:15	–	osv
Prion	Authorization	11 Jun 202116:15	–	prion
RedhatCVE	CVE-2021-23136	22 May 202519:17	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "5ec79624-f1b1-3e73-bf7c-f7efc9bc049c",
        "vendor": {
          "name": "Gallagher"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "6d1ca552-0be2-3316-8710-e6441802d0e2",
        "product": {
          "name": "Command Centre"
        },
        "product_version": "8.40 <8.40.1888 (MR3)"
      },
      {
        "id": "ae447c4d-88db-3da1-887d-fbe70dee5a08",
        "product": {
          "name": "Command Centre"
        },
        "product_version": "8.20 <8.20.1259 (MR5)"
      },
      {
        "id": "dc1f3cde-5d59-31d9-b345-1e7196474d1a",
        "product": {
          "name": "Command Centre"
        },
        "product_version": "unspecified ≤8.10"
      },
      {
        "id": "f9d66166-6b91-3e0b-a6f7-9c7aa8cf65db",
        "product": {
          "name": "Command Centre"
        },
        "product_version": "8.30 <8.30.1359 (MR3)"
      }
    ]
  }
]

Source	Link
security	www.security.gallagher.com/Security-Advisories/CVE-2021-23136
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.16.5

CVSS 24

EPSS0.00122