CVE-2019-19802
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
In Gallagher Command Centre Server v8.10 prior to v8.10.1134(MR4), v8.00 prior to v8.00.1161(MR5), v7.90 prior to v7.90.991(MR5), v7.80 prior to v7.80.960(MR2) and v7.70 or earlier, an authenticated user connecting to OPCUA can view all data that would be replicated in a multi-server setup without privilege checks being applied.
En Gallagher Command Center Server versiones v8.10 anteriores a v8.10.1134(MR4), versiones v8.00 anteriores a v8.00.1161(MR5), versiones v7.90 anteriores a v7.90.991(MR5), versiones v7.80 anteriores a v7.80.960(MR2) y versión v7.70 o anteriores, un usuario autenticado que conecta con OPCUA puede visualizar todos los datos que se replicarían en una configuración multiservidor sin ser aplicadas comprobaciones de privilegios.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-12-15 CVE Reserved
- 2020-01-17 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-862: Missing Authorization
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://security.gallagher.com/cve-2019-19802 | 2021-07-21 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Gallagher Search vendor "Gallagher" | Command Centre Search vendor "Gallagher" for product "Command Centre" | < 7.70 Search vendor "Gallagher" for product "Command Centre" and version " < 7.70" | - |
Affected
| ||||||
| Gallagher Search vendor "Gallagher" | Command Centre Search vendor "Gallagher" for product "Command Centre" | >= 7.80 < 7.80.960 Search vendor "Gallagher" for product "Command Centre" and version " >= 7.80 < 7.80.960" | - |
Affected
| ||||||
| Gallagher Search vendor "Gallagher" | Command Centre Search vendor "Gallagher" for product "Command Centre" | >= 7.90 < 7.90.991 Search vendor "Gallagher" for product "Command Centre" and version " >= 7.90 < 7.90.991" | - |
Affected
| ||||||
| Gallagher Search vendor "Gallagher" | Command Centre Search vendor "Gallagher" for product "Command Centre" | >= 8.00 < 8.00.1161 Search vendor "Gallagher" for product "Command Centre" and version " >= 8.00 < 8.00.1161" | - |
Affected
| ||||||
| Gallagher Search vendor "Gallagher" | Command Centre Search vendor "Gallagher" for product "Command Centre" | >= 8.10 < 8.10.1134 Search vendor "Gallagher" for product "Command Centre" and version " >= 8.10 < 8.10.1134" | - |
Affected
| ||||||
| Gallagher Search vendor "Gallagher" | Command Centre Search vendor "Gallagher" for product "Command Centre" | 7.80.960 Search vendor "Gallagher" for product "Command Centre" and version "7.80.960" | - |
Affected
| ||||||
| Gallagher Search vendor "Gallagher" | Command Centre Search vendor "Gallagher" for product "Command Centre" | 7.90.991 Search vendor "Gallagher" for product "Command Centre" and version "7.90.991" | - |
Affected
| ||||||
| Gallagher Search vendor "Gallagher" | Command Centre Search vendor "Gallagher" for product "Command Centre" | 8.00.1161 Search vendor "Gallagher" for product "Command Centre" and version "8.00.1161" | - |
Affected
| ||||||
| Gallagher Search vendor "Gallagher" | Command Centre Search vendor "Gallagher" for product "Command Centre" | 8.10.1134 Search vendor "Gallagher" for product "Command Centre" and version "8.10.1134" | - |
Affected
| ||||||