64 matches found
EUVD-2024-39327
Malicious code in bioql PyPI...
EUVD-2023-58596
Malicious code in bioql PyPI...
EUVD-2025-20886
Malicious code in bioql PyPI...
EUVD-2024-21336
Malicious code in bioql PyPI...
EUVD-2024-22335
Malicious code in bioql PyPI...
EUVD-2024-38240
Malicious code in bioql PyPI...
EUVD-2023-26601
Malicious code in bioql PyPI...
EUVD-2024-19940
Malicious code in bioql PyPI...
CVE-2025-35983
Improper Certificate Validation CWE-295 in the Controller 7000 OneLink implementation could allow an unprivileged attacker to perform a limited denial of service or perform privileged overrides during the initial configuration of the Controller, there is no risk for Controllers once they are...
CVE-2025-35983
Improper Certificate Validation CWE-295 in the Controller 7000 OneLink implementation could allow an unprivileged attacker to perform a limited denial of service or perform privileged overrides during the initial configuration of the Controller, there is no risk for Controllers once they are...
CVE-2025-35983
Improper Certificate Validation CWE-295 in the Controller 7000 OneLink implementation could allow an unprivileged attacker to perform a limited denial of service or perform privileged overrides during the initial configuration of the Controller, there is no risk for Controllers once they are...
CVE-2025-35983
Improper Certificate Validation CWE-295 in the Controller 7000 OneLink implementation could allow an unprivileged attacker to perform a limited denial of service or perform privileged overrides during the initial configuration of the Controller, there is no risk for Controllers once they are...
CVE-2025-35983
CVE-2025-35983 affects Gallagher Controller 7000. The issue arises from improper certificate validation in the Controller 7000 OneLink implementation during initial configuration, which could allow an unprivileged attacker to cause a limited denial of service or perform privileged overrides. The ...
PT-2025-28972 · Unknown · Controller 7000
Name of the Vulnerable Software and Affected Versions: Controller 7000 versions prior to vCR9.30.250624a distributed in 9.30.1871 MR1 Description: Improper certificate validation may allow an unprivileged attacker to perform a limited denial of service or perform privileged overrides during the...
CVE-2024-24972
Buffer Copy without Checking Size of Input CWE-120 in the Controller 6000 and Controller 7000 diagnostic web interface allows an authorised and authenticated operator to reboot the Controller, causing a Denial of Service. Gallagher recommend the diagnostic web page is not enabled default is off...
CVE-2024-23906
Improper Neutralization of Input During Web Page Generation CWE-79 in the Controller 6000 and Controller 7000 diagnostic webpage allows an attacker to modify Controller configuration during an authenticated Operator's session. This issue affects: Controller 6000 and Controller 7000 9.10 prior to...
CVE-2024-39808
Incorrect Calculation of Buffer Size CWE-131 in the Controller 6000 and Controller 7000 OSDP message handling, allows an attacker with physical access to Controller wiring to instigate a reboot leading to a denial of service. This issue affects: Controller 6000 and Controller 7000 9.10 prior to...
CVE-2024-22383
Missing release of resource after effective lifetime CWE-772 in the Controller 7000 resulted in HBUS connected T-Series readers to not automatically recover after coming under attack over the RS-485 interface, resulting in a persistent denial of service. This issue affects: All variants of the...
CVE-2024-22387
External Control of Critical State Data CWE-642 in the Controller 6000 and Controller 7000 diagnostic web interface allows an authenticated user to modify device I/O connections leading to unexpected behavior that in some circumstances could compromise site physical security controls. Gallagher...
CVE-2023-6355
Incorrect selection of fuse values in the Controller 7000 platform allows an attacker to bypass some protection mechanisms to enable local debug. This issue affects: Gallagher Controller 7000 9.00 prior to vCR9.00.231204b distributed in 9.00.1507 MR1, 8.90 prior to vCR8.90.231204a distributed in...