216.73.217.98

CVE-2026-20801

· Published 03/03/2026 03:15 · Modified 03/03/2026 21:52

Labels: CVE-2026-20801 2026-03-03CVE-2026-20801CWE-319[email protected]

Essential information

Published
03/03/2026 03:15
Modified
03/03/2026 21:52
Author
Creator
CVSS
5.6 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CVSS metrics

Description

Cleartext Transmission of Sensitive Information (CWE-319) in a component used in the Gallagher Hanwha VMS and Gallagher NxWitness VMS integrations allows unprivileged users with local network access to view live video streams. This issue affects all versions of Gallagher NxWitness VMS integration prior to 9.10.017 and Gallagher Hanwha VMS integration prior to 9.10.025.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
gallagher / gallagher nxwitness vms integration cpe:2.3:a:gallagher:gallagher_nxwitness_vms_integration:<9.10.017:*:*:*:*:*:*:*
gallagher / gallagher hanwha vms integration cpe:2.3:a:gallagher:gallagher_hanwha_vms_integration:<9.10.025:*:*:*:*:*:*:*

References