CVE-2021-23211

Cleartext Storage of Sensitive Information in Memory vulnerability in Gallagher Command Centre Server allows Cloud end-to-end encryption key to be discoverable in server memory dumps. This issue affects: Gallagher Command Centre 8.40 versions prior to 8.40.1888 (MR3).
Configurations

Configuration 1 (hide)

cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:51

Type Values Removed Values Added
References () https://security.gallagher.com/Security-Advisories/CVE-2021-23211 - Vendor Advisory () https://security.gallagher.com/Security-Advisories/CVE-2021-23211 - Vendor Advisory
CVSS v2 : 2.1
v3 : 4.4
v2 : 2.1
v3 : 6.0

Information

Published : 2021-06-11 16:15

Updated : 2024-11-21 05:51


NVD link : CVE-2021-23211

Mitre link : CVE-2021-23211

CVE.ORG link : CVE-2021-23211


JSON object : View

Products Affected

gallagher

  • command_centre
CWE
CWE-316

Cleartext Storage of Sensitive Information in Memory

CWE-312

Cleartext Storage of Sensitive Information