Gallagher Controller 6000 And Controller 7000
7 CVEs affecting Gallagher Controller 6000 And Controller 7000. Latest disclosed: 2024-12-12. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-22387 | Medium | 6.8 | 2024-07-11 | External Control of Critical State Data (CWE-642) in the Controller 6000 and Controller 7000 diagnostic web interface allows an authenticated user to modify de… |
CVE-2024-24972 | Medium | 6.5 | 2024-09-11 | Buffer Copy without Checking Size of Input (CWE-120) in the Controller 6000 and Controller 7000 diagnostic web interface allows an authorised and authenticated… |
CVE-2024-23317 | Medium | 6.3 | 2024-07-11 | External Control of File Name or Path (CWE-73) in the Controller 6000 and Controller 7000 allows an attacker with local access to the Controller to perform arb… |
CVE-2024-23906 | Medium | 6.1 | 2024-09-11 | Improper Neutralization of Input During Web Page Generation (CWE-79) in the Controller 6000 and Controller 7000 diagnostic webpage allows an attacker to modify… |
CVE-2024-41146 | Medium | 4.6 | 2024-12-12 | Use of Multiple Resources with Duplicate Identifier (CWE-694) in the Controller 6000 and Controller 7000 Platforms could allow an attacker with physical access… |
CVE-2024-39808 | Medium | 4.6 | 2024-09-11 | Incorrect Calculation of Buffer Size (CWE-131) in the Controller 6000 and Controller 7000 OSDP message handling, allows an attacker with physical access to Con… |
CVE-2024-23485 | Medium | 4.6 | 2024-07-11 | Improperly Preserved Integrity of Hardware Configuration State During a Power Save/Restore Operation (CWE-1304) in the Controller 6000 and 7000 can lead to sec… |