216.73.216.170

CVE-2026-20757

· Published 03/03/2026 03:15 · Modified 03/03/2026 21:52

Labels: CVE-2026-20757 2026-03-03CVE-2026-20757CWE-667[email protected]

Essential information

Published
03/03/2026 03:15
Modified
03/03/2026 21:52
Author
Creator
CVSS
2.5 LOW (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

CVSS metrics

Description

Improper Locking vulnerability (CWE-667) in Gallagher Morpho integration allows a privileged operator to cause a limited denial-of-service in the Command Centre Server. This issue affects Command Centre Server: 9.40 prior to vEL9.40.1976(MR1), 9.30 prior to vEL9.30.3382 (MR4), 9.20 prior to vEL9.20.3783 (MR6), 9.10 prior to vEL9.10.4647 (MR9), all versions of 9.00 and prior.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
gallagher / command centre server cpe:2.3:a:gallagher:command_centre_server:<9.40:vEL9.40.1976:*:*:*:*:*:*:*
gallagher / command centre server cpe:2.3:a:gallagher:command_centre_server:<9.30:vEL9.30.3382:*:*:*:*:*:*:*
gallagher / command centre server cpe:2.3:a:gallagher:command_centre_server:<9.20:vEL9.20.3783:*:*:*:*:*:*:*
gallagher / command centre server cpe:2.3:a:gallagher:command_centre_server:<9.10:vEL9.10.4647:*:*:*:*:*:*:*
gallagher / command centre server cpe:2.3:a:gallagher:command_centre_server:9.00:*:*:*:*:*:*:*

References