Gallagher Command Centre 7.90.991
Approved changes feed: RSS · Atom
cpe:2.3:a:gallagher:command_centre:7.90.991:-:*:*:*:*:*:*
part: a version: 7.90.991 update: -
| Vendor | Gallagher (1a83fbe6-3e6e-58bd-a69d-5a0946535413) |
|---|---|
| Product | Command Centre (08024ced-e26e-56a2-b7c3-eb8925b0e80b) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-7215 |
vulnerable | 2026-06-03 14:43:05.827442 |
Details available
An issue was discovered in Gallagher Command Centre 7.x before 7.90.991(MR5), 8.00 before 8.00.1161(MR5), and 8.10 before 8.10.1134(MR4). External system configuration data (used for third party integrations such as DVR systems) were logged in the Command Centre event trail. Any authenticated operator with the 'view events' privilege could see the full configuration, including cleartext usernames and passwords, under the event details of a Modified DVR System event.
Published: 2020-01-20T05:32:30.000Z
Updated: 2024-08-04T09:25:48.421Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-16096 |
vulnerable | 2026-06-03 14:41:47.149211 |
Details available
CRITICAL (9.9)
In Gallagher Command Centre versions 8.10 prior to 8.10.1134(MR4), 8.00 prior to 8.00.1161(MR5), 7.90 prior to 7.90.991(MR5), 7.80 prior to 7.80.960(MR2), 7.70 and earlier, any operator account has access to all data that would be replicated if the system were to be (or is) attached to a multi-server environment. This can include plain text credentials for DVR systems and card details used for physical access/alarm/perimeter components.
Published: 2020-09-15T13:24:15.000Z
Updated: 2024-08-04T13:37:53.427Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-19802 |
vulnerable | 2026-06-03 14:40:05.862753 |
Details available
In Gallagher Command Centre Server v8.10 prior to v8.10.1134(MR4), v8.00 prior to v8.00.1161(MR5), v7.90 prior to v7.90.991(MR5), v7.80 prior to v7.80.960(MR2) and v7.70 or earlier, an authenticated user connecting to OPCUA can view all data that would be replicated in a multi-server setup without privilege checks being applied.
Published: 2020-01-17T02:00:30.000Z
Updated: 2024-08-05T02:25:12.701Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-19801 |
vulnerable | 2026-06-03 14:40:05.861263 |
Details available
In Gallagher Command Centre Server versions of v8.10 prior to v8.10.1134(MR4), v8.00 prior to v8.00.1161(MR5), v7.90 prior to v7.90.991(MR5), v7.80 prior to v7.80.960(MR2) and v7.70 or earlier, an unprivileged but authenticated user is able to perform a backup of the Command Centre databases.
Published: 2020-01-17T01:55:00.000Z
Updated: 2024-08-05T02:25:12.932Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.