Lucene search
K

59 matches found

CVE
CVE
added 2023/12/18 9:58 p.m.40 views

CVE-2023-22439

The CVE-2023-22439 entry concerns Gallagher Controller 6000 and 7000 (all affected versions listed below) and stems from improper input validation of a large HTTP request in the diagnostic web interface (Port 80). This vulnerability can be exploited to cause a Denial of Service against the diagno...

4.3CVSS4.6AI score0.00512EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/18 9:55 p.m.42 views

CVE-2023-6355

Incorrect selection of fuse values in the Controller 7000 platform allows an attacker to bypass some protection mechanisms to enable local debug. This issue affects: Gallagher Controller 7000 9.00 prior to vCR9.00.231204b distributed in 9.00.1507 MR1, 8.90 prior to vCR8.90.231204a distributed in...

6.8CVSS6.7AI score0.00353EPSS
Exploits0References1
CVE
CVE
added 2023/12/18 9:55 p.m.54 views

CVE-2023-6355

CVE-2023-6355 affects Gallagher Controller 7000. The issue is an incorrect selection of fuse values in the Controller 7000 platform, which allows bypassing protection mechanisms to enable local debug. Affected versions are: 8.70 before 231204a, 8.80 before 231204a, 8.90 before 231204a, and 9.00 b...

6.8CVSS6.4AI score0.00353EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/12/18 12:0 a.m.4 views

Gallagher Controller 6000 Input Validation Error Vulnerability

The Gallagher Controller 6000 is an interface between the Gallagher Command Center server and distributed field hardware from Gallagher New Zealand. An input validation error vulnerability exists in the Gallagher Controller 6000, Controller 7000, which stems from the diagnostic web interface...

4.3CVSS6.7AI score0.00512EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/12/18 12:0 a.m.8 views

Gallagher Controller 6000 Security Vulnerability

The Gallagher Controller 6000 is an interface between the Gallagher Command Center server and distributed field hardware from Gallagher New Zealand. A security vulnerability exists in Gallagher Controller 6000 versions prior to 8.70 vCR8.70.231204a, v8.60 and earlier, which stems from the presenc...

4.6CVSS6.2AI score0.00311EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/12/18 12:0 a.m.5 views

PT-2023-18497 · Gallagher · Gallagher Controller 6000 +1

Name of the Vulnerable Software and Affected Versions: Gallagher Controller 6000 and 7000 versions 8.50 and prior Gallagher Controller 6000 and 7000 versions 8.60 through 8.60.231116a Gallagher Controller 6000 and 7000 versions 8.70 through 8.70.231204a Gallagher Controller 6000 and 7000 versions...

4.3CVSS4.5AI score0.00512EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/12/18 12:0 a.m.4 views

Gallagher Controller 7000 Security Vulnerability

Gallagher Controller 7000 is a powerful network connectivity controller from Gallagher New Zealand. A security vulnerability exists in Gallagher Controller 7000 that originated from allowing an attacker to bypass the protection mechanism to enable local debugging. Affected products and versions:...

6.8CVSS6.5AI score0.00353EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/12/18 12:0 a.m.4 views

Gallagher Controller 6000 Formatting String Error Vulnerability

The Gallagher Controller 6000 is an interface between the Gallagher Command Center server and distributed field hardware from Gallagher New Zealand. A format string error vulnerability exists in Gallagher Controller 6000 prior to vCR8.60.231116a, 8.50 and prior versions, which stems from the fact...

8.8CVSS6.9AI score0.00606EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/06/01 12:0 a.m.5 views

Gallagher Controller 6000 安全漏洞

The Gallagher Controller 6000 is an interface between the Gallagher Command Center server and distributed field hardware from Gallagher New Zealand. A security vulnerability exists in the Gallagher Controller 6000 that originates from an attacker being able to cause a buffer overflow via the uplo...

9.8CVSS8.9AI score0.00496EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/06 5:15 p.m.10 views

CVE-2022-26078

Gallagher Controller 6000 is vulnerable to a Denial of Service attack via conflicting ARP packets with a duplicate IP address. This issue affects: Gallagher Gallagher Controller 6000 vCR8.60 versions prior to 220303a; vCR8.50 versions prior to 220303a; vCR8.40 versions prior to 220303a; vCR8.30...

7.8CVSS7.1AI score0.00845EPSS
Exploits0References2
OSV
OSV
added 2022/07/06 5:15 p.m.5 views

CVE-2022-26078

Gallagher Controller 6000 is vulnerable to a Denial of Service attack via conflicting ARP packets with a duplicate IP address. This issue affects: Gallagher Gallagher Controller 6000 vCR8.60 versions prior to 220303a; vCR8.50 versions prior to 220303a; vCR8.40 versions prior to 220303a; vCR8.30...

7.5CVSS5.8AI score0.00845EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/07/06 4:29 p.m.22 views

CVE-2022-26078

Gallagher Controller 6000 is vulnerable to a Denial of Service attack via conflicting ARP packets with a duplicate IP address. This issue affects: Gallagher Gallagher Controller 6000 vCR8.60 versions prior to 220303a; vCR8.50 versions prior to 220303a; vCR8.40 versions prior to 220303a; vCR8.30...

7.5CVSS7.6AI score0.00845EPSS
Exploits0References1
CVE
CVE
added 2022/07/06 4:29 p.m.80 views

CVE-2022-26078

CVE-2022-26078 describes a Denial of Service against the Gallagher Controller 6000 caused by conflicting ARP packets with a duplicate IP address. Affected versions include Gallagher Controller 6000 vCR8.60 before 220303a; vCR8.50 before 220303a; vCR8.40 before 220303a; and vCR8.30 before 220303a....

7.8CVSS7.4AI score0.00845EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/07/06 12:0 a.m.6 views

Gallagher Controller 6000 安全漏洞

The Gallagher Controller 6000 is an interface between the Gallagher Command Center server and distributed field hardware from Gallagher New Zealand. A security vulnerability exists in the Gallagher Controller 6000 that originates from an attack via conflicting ARP packets with duplicate IP...

7.8CVSS7.4AI score0.00845EPSS
Exploits0References2
OSV
OSV
added 2021/11/18 7:15 p.m.7 views

CVE-2021-23197

Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions prior to 8.50.2048 MR3 ;...

7.8CVSS6.1AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2021/11/18 6:15 p.m.24 views

CVE-2021-23146

An Incomplete Comparison with Missing Factors vulnerability in the Gallagher Controller allows an attacker to bypass PIV verification. This issue affects: Gallagher Command Centre 8.40 versions prior to 8.40.1888 MR3; 8.30 versions prior to 8.30.1359 MR3; 8.20 versions prior to 8.20.1259 MR5; 8.1...

7.5CVSS0.00852EPSS
Exploits0References1
Prion
Prion
added 2021/11/18 6:15 p.m.14 views

Privilege escalation

An Incomplete Comparison with Missing Factors vulnerability in the Gallagher Controller allows an attacker to bypass PIV verification. This issue affects: Gallagher Command Centre 8.40 versions prior to 8.40.1888 MR3; 8.30 versions prior to 8.30.1359 MR3; 8.20 versions prior to 8.20.1259 MR5; 8.1...

5CVSS7.5AI score0.00852EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/11/18 5:59 p.m.29 views

CVE-2021-23146

An Incomplete Comparison with Missing Factors vulnerability in the Gallagher Controller allows an attacker to bypass PIV verification. This issue affects: Gallagher Command Centre 8.40 versions prior to 8.40.1888 MR3; 8.30 versions prior to 8.30.1359 MR3; 8.20 versions prior to 8.20.1259 MR5; 8.1...

7.1CVSS7.8AI score0.00852EPSS
Exploits0References1
CVE
CVE
added 2021/11/18 5:59 p.m.54 views

CVE-2021-23146

The CVE-2021-23146 entry concerns an Incomplete Comparison with Missing Factors vulnerability in Gallagher Command Centre (Gallagher Controller). Affected software: Gallagher Command Centre versions prior to 8.40.1888 (MR3); prior to 8.30.1454 (MR3); prior to 8.20.1291 (MR5); prior to 8.10.1284 (...

7.5CVSS7.5AI score0.00852EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder