Improper validation of the cloud certificate chain in Mobile Connect allows man-in-the-middle attack to impersonate the legitimate Command Centre Server. This issue affects: Gallagher Command Centre Mobile Connect for Android 15 versions prior to 15.04.040; version 14 and prior versions.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:HGallagher Command Centre Mobile Connect
APPGallagher≤ 14.015.0 – 15.04.040 (bez)
Related vulnerabilities
Gallagher Command Centre: niechronione dane uwierzytelniające integracji DVR
Improper validation of the cloud certificate chain in Mobile Client allows man-in-the-middle attack to imperso...
Improper Authorization vulnerability in Gallagher Command Centre Server allows command line macros to be modif...
A SQL Injection vulnerability in the OPCUA interface of Gallagher Command Centre allows a remote unprivileged ...
It is possible to enumerate access card credentials via an unauthenticated network connection to the server in...