CVE-2020-16102
First published: Mon Dec 14 2020(Updated: )
Improper Authentication vulnerability in Gallagher Command Centre Server allows an unauthenticated remote attacker to create items with invalid configuration, potentially causing the server to crash and fail to restart. This issue affects: Gallagher Command Centre 8.30 versions prior to 8.30.1299(MR2); 8.20 versions prior to 8.20.1218(MR4); 8.10 versions prior to 8.10.1253(MR6); 8.00 versions prior to 8.00.1252(MR7); version 7.90 and prior versions.
Credit: disclosures@gallagher.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Gallagher Command Centre | <7.90.0 | |
| Gallagher Command Centre | >=8.00<8.00.1252 | |
| Gallagher Command Centre | >=8.10<8.10.1253 | |
| Gallagher Command Centre | >=8.20<8.20.1218 | |
| Gallagher Command Centre | >=8.30<8.30.1299 | |
| Gallagher Command Centre | =8.00.1252 | |
| Gallagher Command Centre | =8.00.1252-maintenance_release7 | |
| Gallagher Command Centre | =8.10.1253 | |
| Gallagher Command Centre | =8.10.1253-maintenance_release6 | |
| Gallagher Command Centre | =8.20.1218 | |
| Gallagher Command Centre | =8.20.1218-maintenance_release4 | |
| Gallagher Command Centre | =8.30.1299 | |
| Gallagher Command Centre | =8.30.1299-maintenance_release2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2020-16102?
CVE-2020-16102 has a high severity rating due to its potential to allow an unauthenticated remote attacker to crash the Gallagher Command Centre Server.
How do I fix CVE-2020-16102?
You can fix CVE-2020-16102 by upgrading Gallagher Command Centre to version 8.30.1299 or later.
What version of Gallagher Command Centre is affected by CVE-2020-16102?
CVE-2020-16102 affects Gallagher Command Centre versions below 8.30.1299.
Can CVE-2020-16102 be exploited remotely?
Yes, CVE-2020-16102 can be exploited remotely by an unauthenticated attacker.
What impact does CVE-2020-16102 have on system stability?
The impact of CVE-2020-16102 includes potential crashes and failure to restart of the Gallagher Command Centre Server.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/references
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/gallagher
- canonical/gallagher command centre
- version/gallagher command centre/8.00
- version/gallagher command centre/8.10
- version/gallagher command centre/8.20
- version/gallagher command centre/8.30
- version/gallagher command centre/8.00.1252
- version/gallagher command centre/8.00.1252-maintenance_release7
- version/gallagher command centre/8.10.1253
- version/gallagher command centre/8.10.1253-maintenance_release6
- version/gallagher command centre/8.20.1218
- version/gallagher command centre/8.20.1218-maintenance_release4
- version/gallagher command centre/8.30.1299
- version/gallagher command centre/8.30.1299-maintenance_release2