Vulnerabilities > Gallagher > Command Centre

DATE CVE VULNERABILITY TITLE RISK
2020-01-20 CVE-2020-7215 Information Exposure vulnerability in Gallagher Command Centre
An issue was discovered in Gallagher Command Centre 7.x before 7.90.991(MR5), 8.00 before 8.00.1161(MR5), and 8.10 before 8.10.1134(MR4).
local
low complexity
gallagher CWE-200
2.1
2020-01-17 CVE-2019-19802 Information Exposure vulnerability in Gallagher Command Centre
In Gallagher Command Centre Server v8.10 prior to v8.10.1134(MR4), v8.00 prior to v8.00.1161(MR5), v7.90 prior to v7.90.991(MR5), v7.80 prior to v7.80.960(MR2) and v7.70 or earlier, an authenticated user connecting to OPCUA can view all data that would be replicated in a multi-server setup without privilege checks being applied.
network
low complexity
gallagher CWE-200
4.0
2020-01-17 CVE-2019-19801 Unspecified vulnerability in Gallagher Command Centre
In Gallagher Command Centre Server versions of v8.10 prior to v8.10.1134(MR4), v8.00 prior to v8.00.1161(MR5), v7.90 prior to v7.90.991(MR5), v7.80 prior to v7.80.960(MR2) and v7.70 or earlier, an unprivileged but authenticated user is able to perform a backup of the Command Centre databases.
local
low complexity
gallagher
2.1
2019-08-28 CVE-2019-15294 Information Exposure Through Log Files vulnerability in Gallagher Command Centre 8.10
An issue was discovered in Gallagher Command Centre 8.10 before 8.10.1092(MR2).
network
low complexity
gallagher CWE-532
5.0
2019-06-06 CVE-2019-12492 Information Exposure vulnerability in Gallagher Command Centre
Gallagher Command Centre before 7.80.939, 7.90.x before 7.90.961, and 8.x before 8.00.1128 allows arbitrary event creation and information disclosure via the FT Command Centre Service and FT Controller Service services.
network
gallagher CWE-200
5.8