CVE-2020-16099 - In Gallagher Command Centre v8.20 prior to v8.20.1093(MR2) it is possible to create Guard Tour event

CVE-2020-16099

Summary

In Gallagher Command Centre v8.20 prior to v8.20.1093(MR2) it is possible to create Guard Tour events that when accessed via things like reporting cause clients to temporarily hang or disconnect.

References

https://security.gallagher.com/Security-Advisories/CVE-2020-16099

Vulnerable Configurations

cpe:2.3:a:gallagher:command_centre:8.20:*:*:*:*:*:*:*
cpe:2.3:a:gallagher:command_centre:8.20:*:*:*:*:*:*:*
cpe:2.3:a:gallagher:command_centre:8.20.1093:-:*:*:*:*:*:*
cpe:2.3:a:gallagher:command_centre:8.20.1093:-:*:*:*:*:*:*

CVSS

Base:	3.5 (as of 18-11-2021 - 17:50)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	SINGLE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:S/C:N/I:N/A:P

refmap via4

misc

https://security.gallagher.com/Security-Advisories/CVE-2020-16099

Last major update

18-11-2021 - 17:50

Published

15-09-2020 - 14:15

Last modified

18-11-2021 - 17:50