Vulnerabilities > CVE-2022-26078 - Unspecified vulnerability in Gallagher Controller 6000 Firmware

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

gallagher

NVD

Published: 2022-07-06

Updated: 2022-07-14

Summary

Gallagher Controller 6000 is vulnerable to a Denial of Service attack via conflicting ARP packets with a duplicate IP address. This issue affects: Gallagher Gallagher Controller 6000 vCR8.60 versions prior to 220303a; vCR8.50 versions prior to 220303a; vCR8.40 versions prior to 220303a; vCR8.30 versions prior to 220303a.

Vulnerable Configurations

Part	Description	Count
OS	Gallagher Gallagher Controller 6000 Firmware 8.30 Gallagher Controller 6000 Firmware 8.60 Gallagher Controller 6000 Firmware 8.50 Gallagher Controller 6000 Firmware 8.40	4
Hardware	Gallagher Gallagher Controller 6000 -	1

References

https://security.gallagher.com/Security-Advisories/CVE-2022-26078