What is CVE-2020-16097?

CVE-2020-16097 is a high-severity vulnerability in Gallagher Command Centre, classified under Insufficiently Protected Credentials. CVSS score: 7.3/10. Published 2020-09-15.

How severe is CVE-2020-16097?

High severity. CVSS v3 base score is 7.3 out of 10.

Vulnerability in Gallagher Command Centre

CVE-2020-16097

On controllers running versions of v8.20 prior to vCR8.20.200221b (distributed in v8.20.1093(MR2)), v8.10 prior to vGR8.10.179 (distributed in v8.10.1211(MR5)), v8.00 prior to vGR8.00.165 (Distributed in v8.00.1228(MR6)), v7.90 prior to vG…

EPSS: 0.001 (18.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.3 (High). Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N.

Affected products

Gallagher Command Centre — versions unspecified, vCR8.20, 8.10

Weakness classification (CWE)

CWE-522 — Insufficiently Protected Credentials

References

security.gallagher.com/Security-Advisories/CVE-2020-16097 (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-16097?: CVE-2020-16097 is a high-severity vulnerability in Gallagher Command Centre, classified under Insufficiently Protected Credentials. CVSS score: 7.3/10. Published 2020-09-15.
How severe is CVE-2020-16097?: High severity. CVSS v3 base score is 7.3 out of 10.