CVE-2021-23146

An Incomplete Comparison with Missing Factors vulnerability in the Gallagher Controller allows an attacker to bypass PIV verification. This issue affects: Gallagher Command Centre 8.40 versions prior to 8.40.1888 (MR3); 8.30 versions prior to 8.30.1359 (MR3); 8.20 versions prior to 8.20.1259 (MR5); 8.10 versions prior to 8.10.1284 (MR7); version 8.00 and prior versions.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*
cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*
cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*
cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*
cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-11-18 18:15

Updated : 2024-02-28 18:48


NVD link : CVE-2021-23146

Mitre link : CVE-2021-23146

CVE.ORG link : CVE-2021-23146


JSON object : View

Products Affected

gallagher

  • command_centre
CWE
CWE-697

Incorrect Comparison

CWE-1023

Incomplete Comparison with Missing Factors