Описание
Cleartext Storage of Sensitive Information in Memory vulnerability in Gallagher Command Centre Server allows Cloud end-to-end encryption key to be discoverable in server memory dumps. This issue affects: Gallagher Command Centre 8.40 versions prior to 8.40.1888 (MR3).
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 8.40 (включая) до 8.40.1888 (исключая)
cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*
EPSS
Процентиль: 2%
0.00014
Низкий
6 Medium
CVSS3
4.4 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-316
CWE-312
Связанные уязвимости
CVSS3: 4.4
github
больше 3 лет назад
Cleartext Storage of Sensitive Information in Memory vulnerability in Gallagher Command Centre Server allows Cloud end-to-end encryption key to be discoverable in server memory dumps. This issue affects: Gallagher Command Centre 8.40 versions prior to 8.40.1888 (MR3).
EPSS
Процентиль: 2%
0.00014
Низкий
6 Medium
CVSS3
4.4 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-316
CWE-312