CVE-2020-16102

Summary

Improper Authentication vulnerability in Gallagher Command Centre Server allows an unauthenticated remote attacker to create items with invalid configuration, potentially causing the server to crash and fail to restart. This issue affects: Gallagher Command Centre 8.30 versions prior to 8.30.1299(MR2); 8.20 versions prior to 8.20.1218(MR4); 8.10 versions prior to 8.10.1253(MR6); 8.00 versions prior to 8.00.1252(MR7); version 7.90 and prior versions.

Affected Software

VendorProductVersion RangeStatus
GallagherCommand Centreunspecified <= 7.90affected
GallagherCommand Centre8.30 < 8.30.1299(MR2)affected
GallagherCommand Centre8.20 < 8.20.1218(MR4)affected
GallagherCommand Centre8.10 < 8.10.1253(MR6)affected
GallagherCommand Centre8.00 < 8.00.1252(MR7)affected

Weaknesses

  • CWE-287: CWE-287 Improper Authentication

ADP Enrichment

CVE Program Container

Additional References

References