Vulnerabilities > Gallagher > Command Centre > 8.30.1236

DATE CVE VULNERABILITY TITLE RISK
2020-12-14 CVE-2020-16103 Type Confusion vulnerability in Gallagher Command Centre
Type confusion in Gallagher Command Centre Server allows a remote attacker to crash the server or possibly cause remote code execution.
network
low complexity
gallagher CWE-843
8.8
2020-12-14 CVE-2020-16102 Missing Authentication for Critical Function vulnerability in Gallagher Command Centre
Improper Authentication vulnerability in Gallagher Command Centre Server allows an unauthenticated remote attacker to create items with invalid configuration, potentially causing the server to crash and fail to restart.
network
low complexity
gallagher CWE-306
8.2
2020-09-15 CVE-2020-16098 Missing Authentication for Critical Function vulnerability in Gallagher Command Centre
It is possible to enumerate access card credentials via an unauthenticated network connection to the server in versions of Command Centre v8.20 prior to v8.20.1166(MR3), versions of 8.10 prior to v8.10.1211(MR5), versions of 8.00 prior to v8.00.1228(MR6), all versions of 7.90 and earlier.
network
low complexity
gallagher CWE-306
critical
9.8