Lucene search

[email protected]NVD:CVE-2023-22363

HistoryJul 25, 2023 - 12:15 a.m.

CVE-2023-22363

2023-07-2500:15:09

CWE-121

CWE-787

[email protected]

web.nvd.nist.gov

stack-based buffer overflow

command centre server

denial of service

access group

command centre

vel8.80

vel8.80.1192

mr2

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

23.0%

JSON

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group.

This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 (MR2)

Affected configurations

NVD

Node

gallaghercommand_centreRange8.80–8.80.1192

References

security.gallagher.com/en-NZ/Security-Advisories/CVE-2023-22363

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

23.0%

JSON

Related for NVD:CVE-2023-22363

prion1 cve1 cvelist1