Lucene search
+L

132 matches found

Cvelist
Cvelist
added 2023/12/18 9:59 p.m.26 views

CVE-2023-23570

Client-Side enforcement of Server-Side security for the Command Centre server could be bypassed and lead to invalid configuration with undefined behavior. This issue affects: Gallagher Command Centre 8.90 prior to vEL8.90.1620 MR2, all versions of 8.80 and prior...

5.4CVSS8.4AI score0.00666EPSS
Exploits0References1
OSV
OSV
added 2023/07/25 2:15 a.m.4 views

CVE-2023-23568

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Personal Data Fields. This issue affects Command Centre: vEL 8.90 prior to vEL8.90.1318 MR1, vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to...

5.4CVSS5.8AI score0.00264EPSS
Exploits0References1
NVD
NVD
added 2023/07/25 2:15 a.m.40 views

CVE-2023-23568

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Personal Data Fields. This issue affects Command Centre: vEL 8.90 prior to vEL8.90.1318 MR1, vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to...

5.4CVSS4.8AI score0.00264EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/25 1:31 a.m.15 views

CVE-2023-23568

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Personal Data Fields. This issue affects Command Centre: vEL 8.90 prior to vEL8.90.1318 MR1, vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to...

4.3CVSS6.8AI score0.00264EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/25 1:31 a.m.35 views

CVE-2023-23568

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Personal Data Fields. This issue affects Command Centre: vEL 8.90 prior to vEL8.90.1318 MR1, vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to...

4.3CVSS5.8AI score0.00264EPSS
Exploits0References1
CVE
CVE
added 2023/07/25 1:31 a.m.40 views

CVE-2023-23568

CVE-2023-23568 affects Gallagher Command Centre Server (Command Centre) with improper privilege validation that allows authenticated unprivileged operators to modify and view Personal Data Fields. Public details enumerate affected releases: vEL8.40 and prior; vEL8.50 prior to vEL8.50.2831 (MR8); ...

5.4CVSS5.5AI score0.00264EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/07/25 12:15 a.m.24 views

CVE-2023-25074

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Competencies. This issue affects Command Centre: vEL8.90 prior to vEL8.90.1318 MR1, vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to...

7.1CVSS6.9AI score0.00264EPSS
Exploits0References1
OSV
OSV
added 2023/07/25 12:15 a.m.5 views

CVE-2023-25074

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Competencies. This issue affects Command Centre: vEL8.90 prior to vEL8.90.1318 MR1, vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to...

5.4CVSS5.8AI score0.00264EPSS
Exploits0References1
OSV
OSV
added 2023/07/25 12:15 a.m.4 views

CVE-2023-22363

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

7.5CVSS6.2AI score0.00506EPSS
Exploits0References1
NVD
NVD
added 2023/07/25 12:15 a.m.38 views

CVE-2023-22363

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

7.5CVSS6.8AI score0.00506EPSS
Exploits0References1
Prion
Prion
added 2023/07/25 12:15 a.m.21 views

Input validation

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Competencies. This issue affects Command Centre: vEL8.90 prior to vEL8.90.1318 MR1, vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to...

5.5CVSS5.4AI score0.00264EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/07/25 12:15 a.m.18 views

Stack overflow

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

5CVSS7.6AI score0.00506EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/07/24 11:15 p.m.23 views

CVE-2023-22428

Improper privilege validation in Command Centre Server allows authenticated operators to modify Division lineage. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to vEL8.60.2347 MR6, vEL8.50 prior to vEL8.50.2831MR8, vEL8.40 a...

7.6CVSS7.5AI score0.00303EPSS
Exploits0References1
OSV
OSV
added 2023/07/24 11:15 p.m.7 views

CVE-2023-22428

Improper privilege validation in Command Centre Server allows authenticated operators to modify Division lineage. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to vEL8.60.2347 MR6, vEL8.50 prior to vEL8.50.2831MR8, vEL8.40 a...

6.5CVSS5.8AI score0.00303EPSS
Exploits0References1
CVE
CVE
added 2023/07/24 11:9 p.m.38 views

CVE-2023-22363

CVE-2023-22363 describes a stack-based buffer overflow in Gallagher’s Command Centre Server . Affected versions are vEL8.80 prior to vEL8.80.1192 (MR2) . The vulnerability allows a denial of service by an attacker who assigns cardholders to an Access Group, due to a likely overflow in the server ...

7.5CVSS6.8AI score0.00506EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/24 11:9 p.m.40 views

CVE-2023-22363 Access Zone stack overflow

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

6.5CVSS7.9AI score0.00506EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/24 11:5 p.m.14 views

CVE-2023-25074 Competency access levels not enforced in the server

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Competencies. This issue affects Command Centre: vEL8.90 prior to vEL8.90.1318 MR1, vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to...

7.1CVSS6.8AI score0.00264EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/24 11:5 p.m.31 views

CVE-2023-25074 Competency access levels not enforced in the server

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Competencies. This issue affects Command Centre: vEL8.90 prior to vEL8.90.1318 MR1, vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to...

7.1CVSS7.1AI score0.00264EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/24 10:44 p.m.13 views

CVE-2023-22428

Improper privilege validation in Command Centre Server allows authenticated operators to modify Division lineage. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to vEL8.60.2347 MR6, vEL8.50 prior to vEL8.50.2831MR8, vEL8.40 a...

7.6CVSS6.8AI score0.00303EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/24 10:44 p.m.25 views

CVE-2023-22428

Improper privilege validation in Command Centre Server allows authenticated operators to modify Division lineage. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2, vEL8.70 prior to vEL8.70.2185 MR4, vEL8.60 prior to vEL8.60.2347 MR6, vEL8.50 prior to vEL8.50.2831MR8, vEL8.40 a...

7.6CVSS7.7AI score0.00303EPSS
Exploits0References1
Rows per page
Query Builder