Insufficiently protected credentials (CWE-522) for third party DVR integrations to the Command Centre Server are accessible to authenticated but unprivileged users.
This issue affects: Gallagher Command Centre 9.00 prior to vEL9.00.1774 (MR2), 8.90 prior to vEL8.90.1751 (MR3), 8.80 prior to vEL8.80.1526 (MR4), 8.70 prior to vEL8.70.2526 (MR6), all version of 8.60 and prior.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Gallagher
Published: 2024-03-05T03:09:52.505Z
Updated: 2024-08-01T22:27:36.314Z
Reserved: 2024-02-05T04:16:48.019Z
Link: CVE-2024-21815
Vulnrichment
Updated: 2024-08-01T22:27:36.314Z
NVD
Status : Awaiting Analysis
Published: 2024-03-05T03:15:06.060
Modified: 2024-03-05T13:41:01.900
Link: CVE-2024-21815
Redhat
No data.