{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-11T21:40:37.307","vulnerabilities":[{"cve":{"id":"CVE-2024-23194","sourceIdentifier":"disclosures@gallagher.com","published":"2024-07-11T03:15:02.903","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper output Neutralization for Logs (CWE-117) in the Command Centre API Diagnostics Endpoint could allow an attacker limited ability to modify Command Centre log files. \n\nThis issue affects: Gallagher Command Centre v9.10 prior to vEL9.10.1268 (MR1)."},{"lang":"es","value":"Una neutralización de salida incorrecta para registros (CWE-117) en el endpoint de diagnóstico de la API del Command Center podría permitir que un atacante tenga una capacidad limitada para modificar los archivos de registro del Command Center. Este problema afecta a: Gallagher Command Center v9.10 anterior a vEL9.10.1268 (MR1)."}],"metrics":{"cvssMetricV31":[{"source":"disclosures@gallagher.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":1.4}]},"weaknesses":[{"source":"disclosures@gallagher.com","type":"Secondary","description":[{"lang":"en","value":"CWE-117"}]}],"references":[{"url":"https://security.gallagher.com/Security-Advisories/CVE-2024-23194","source":"disclosures@gallagher.com"},{"url":"https://security.gallagher.com/Security-Advisories/CVE-2024-23194","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}