How severe is CVE-2021-23197?

CVE-2021-23197 has a CVSS v3 score of 5.2 (MEDIUM).

CVE-2021-23197

Name: command_centre
Author: gallagher

5.2MEDIUM

Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Galla

Publicado: 11/18/2021Actualizado: 11/21/2024

Descripción

Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions prior to 8.50.2048 (MR3) ;

Análisis IAImpulsado por IA

Productos Afectados

gallaghercommand_centre

Referencias

https://security.gallagher.com/Security-Advisories/CVE-2021-23197
Vendor Advisory
https://security.gallagher.com/Security-Advisories/CVE-2021-23197
Vendor Advisory