Vulnerability Details CVE-2021-23197
Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions prior to 8.50.2048 (MR3) ;
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.1%
CVSS Severity
CVSS v3 Score 5.2
CVSS v2 Score 4.6
References
Products affected by CVE-2021-23197
-
cpe:2.3:a:gallagher:command_centre:8.50