{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-23T12:59:47.448","vulnerabilities":[{"cve":{"id":"CVE-2019-19802","sourceIdentifier":"cve@mitre.org","published":"2020-01-17T02:15:11.667","lastModified":"2024-11-21T04:35:25.213","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In Gallagher Command Centre Server v8.10 prior to v8.10.1134(MR4), v8.00 prior to v8.00.1161(MR5), v7.90 prior to v7.90.991(MR5), v7.80 prior to v7.80.960(MR2) and v7.70 or earlier, an authenticated user connecting to OPCUA can view all data that would be replicated in a multi-server setup without privilege checks being applied."},{"lang":"es","value":"En Gallagher Command Center Server versiones v8.10 anteriores a v8.10.1134(MR4), versiones v8.00 anteriores a v8.00.1161(MR5), versiones v7.90 anteriores a v7.90.991(MR5), versiones v7.80 anteriores a v7.80.960(MR2) y versión v7.70 o anteriores, un usuario autenticado que conecta con OPCUA puede visualizar todos los datos que se replicarían en una configuración multiservidor sin ser aplicadas comprobaciones de privilegios."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*","versionEndExcluding":"7.70","matchCriteriaId":"8F1560D6-CCAA-4FF6-A342-53F3BD108408"},{"vulnerable":true,"criteria":"cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*","versionStartIncluding":"7.80","versionEndExcluding":"7.80.960","matchCriteriaId":"4005F0E6-ED18-4DBE-8FDC-F6F40853CE43"},{"vulnerable":true,"criteria":"cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*","versionStartIncluding":"7.90","versionEndExcluding":"7.90.991","matchCriteriaId":"D6093704-EB1F-4B41-A9BA-EAF5EBBE86E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*","versionStartIncluding":"8.00","versionEndExcluding":"8.00.1161","matchCriteriaId":"2C8C50BE-CE33-47F5-87D7-72EC8A069C03"},{"vulnerable":true,"criteria":"cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*","versionStartIncluding":"8.10","versionEndExcluding":"8.10.1134","matchCriteriaId":"9F25C56A-EFE0-407A-B682-E25C5665CAB5"},{"vulnerable":true,"criteria":"cpe:2.3:a:gallagher:command_centre:7.80.960:-:*:*:*:*:*:*","matchCriteriaId":"10E5A085-2298-4DF7-B7FE-3BDC5D2701D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:gallagher:command_centre:7.90.991:-:*:*:*:*:*:*","matchCriteriaId":"B374C701-59BA-4BDC-A2CD-5EE40A253746"},{"vulnerable":true,"criteria":"cpe:2.3:a:gallagher:command_centre:8.00.1161:-:*:*:*:*:*:*","matchCriteriaId":"2BE2F182-7215-4A41-86F5-B8F6F307E779"},{"vulnerable":true,"criteria":"cpe:2.3:a:gallagher:command_centre:8.10.1134:-:*:*:*:*:*:*","matchCriteriaId":"0676CE27-3D08-4619-89A6-7A17B37B3665"}]}]}],"references":[{"url":"https://security.gallagher.com/cve-2019-19802","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://security.gallagher.com/cve-2019-19802","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}