How severe is CVE-2023-46686?

CVE-2023-46686 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2023-46686

Name: command_centre
Author: gallagher

5.5MEDIUM

A reliance on untrusted inputs in a security decision could be exploited by a privileged user to configure the Gallagher Command Centre Diagnostics Service to use less secure communication protocols.

Published: 12/18/2023Updated: 11/21/2024

Description

A reliance on untrusted inputs in a security decision could be exploited by a privileged user to configure the Gallagher Command Centre Diagnostics Service to use less secure communication protocols. This issue affects: Gallagher Diagnostics Service prior to v1.3.0 (distributed in 9.00.1507(MR1)).

AI AnalysisPowered by AI

Affected Products

gallaghercommand_centre

9.00.1507

References

https://security.gallagher.com/Security-Advisories/CVE-2023-46686
Vendor Advisory
https://security.gallagher.com/Security-Advisories/CVE-2023-46686
Vendor Advisory