Improper validation of the cloud certificate chain in Mobile Connect allows man-in-the-middle attack to impersonate the legitimate Command Centre Server. This issue affects: Gallagher Command Centre Mobile Connect for Android 15 versions prior to 15.04.040; version 14 and prior versions.
CPE | Name | Operator | Version |
---|---|---|---|
command_centre_mobile_connect | ge | 15.0 | |
command_centre_mobile_connect | lt | 15.04.040 | |
command_centre_mobile_connect | le | 14.0 |