Design/Logic Flaw

2020-09-1514:15:00

PRIOn knowledge base

www.prio-n.com

9.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.2%

JSON

It is possible to enumerate access card credentials via an unauthenticated network connection to the server in versions of Command Centre v8.20 prior to v8.20.1166(MR3), versions of 8.10 prior to v8.10.1211(MR5), versions of 8.00 prior to v8.00.1228(MR6), all versions of 7.90 and earlier. These credentials can then be used to encode low security cards to be used by the system where insecure card technologies are supported.

CPENameOperatorVersion
command_centreeq8.30.1236
command_centrege8.30
command_centrelt8.30.1236
command_centreeq8.20.1166
command_centrege8.20
command_centrelt8.20.1166
command_centreeq8.10.1211
command_centrege8.10
command_centrelt8.10.1211
command_centreeq8.00.1228

Name	Operator	Version
command_centre	eq	8.30.1236
command_centre	ge	8.30
command_centre	lt	8.30.1236
command_centre	eq	8.20.1166
command_centre	ge	8.20
command_centre	lt	8.20.1166
command_centre	eq	8.10.1211
command_centre	ge	8.10
command_centre	lt	8.10.1211
command_centre	eq	8.00.1228