CVE-2020-7215 : What You Need to Know

Gallagher Command Centre versions 7.x before 7.90.991(MR5), 8.00 before 8.00.1161(MR5), and 8.10 before 8.10.1134(MR4) are affected by a vulnerability that exposes external system configuration data, including sensitive information like usernames and passwords, to authenticated operators with specific privileges.

Understanding CVE-2020-7215

What is CVE-2020-7215?

The vulnerability in Gallagher Command Centre versions allows authenticated operators to view cleartext usernames and passwords in the event details of a Modified DVR System event.

The Impact of CVE-2020-7215

The exposure of sensitive configuration data poses a significant security risk, potentially leading to unauthorized access to integrated third-party systems.

Technical Details of CVE-2020-7215

Vulnerability Description

The issue stems from the logging of external system configuration data in the Command Centre event trail, accessible to operators with 'view events' privilege.

Affected Systems and Versions

Gallagher Command Centre 7.x before 7.90.991(MR5)
Gallagher Command Centre 8.00 before 8.00.1161(MR5)
Gallagher Command Centre 8.10 before 8.10.1134(MR4)

Exploitation Mechanism

Operators with the 'view events' privilege can exploit this vulnerability to access sensitive configuration data, compromising system security.

Mitigation and Prevention

Immediate Steps to Take

Upgrade to the latest patched versions of Gallagher Command Centre.
Restrict access to the event details feature for operators to minimize exposure.

Long-Term Security Practices

Regularly review and update access privileges to limit exposure of sensitive data.
Implement strong password policies and encryption practices to safeguard credentials.

Patching and Updates

Apply security patches provided by Gallagher Security to address the vulnerability and enhance system security.