📦 Command Centre
by Gallagher
🔍 What is Command Centre?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
Authenticated but unprivileged users can access insufficiently protected credentials for third-party DVR integrations in Gallagher Command Centre. This allows unauthorized access to DVR systems and af...
This vulnerability allows unauthorized Command Centre Operators to modify command line macros in Gallagher Command Centre Server, potentially executing arbitrary commands. It affects Gallagher Command...
A SQL injection vulnerability in the OPCUA interface of Gallagher Command Centre allows remote unprivileged operators to modify databases undetected. This affects Gallagher Command Centre versions 8.4...
This vulnerability in Gallagher Command Centre allows any operator account to access sensitive data that would be replicated in multi-server environments, including plain text credentials for DVR syst...
CVE-2020-16098 allows unauthenticated attackers to enumerate access card credentials from Gallagher Command Centre security systems via network connections. These credentials can then be used to creat...
This vulnerability allows authenticated but unprivileged operators in Gallagher Command Centre Server to improperly modify and view Competencies data due to insufficient privilege validation. It affec...
This vulnerability allows authenticated operators in Gallagher Command Centre Server to improperly modify Division lineage due to insufficient privilege validation. It affects all Command Centre versi...
This SQL injection vulnerability in Gallagher Command Centre Server allows attackers to execute arbitrary SQL queries via Windows Registry settings for date fields. Attackers can exploit this through ...
This vulnerability allows man-in-the-middle attackers to intercept and potentially decrypt sensitive communications between Gallagher Command Centre servers and SMTP clients due to improper certificat...
This vulnerability allows attackers to bypass PIV (Personal Identity Verification) authentication in Gallagher Command Centre security systems by exploiting an incomplete comparison mechanism. It affe...
This vulnerability exposes OSDP key material to unauthorized Command Centre Operators in Gallagher Command Centre Server, potentially allowing them to access sensitive security system data. It affects...