CNNVD-202510-3279 Information

Oct 23, 2025 cve

CNNVD ID

CNNVD-202510-3279

CVE-2025-47699

CNNVD Published: 2025-10-23

Description (Chinese)

Gallagher Command Centre Server是新西兰Gallagher公司的一个用于对建筑物内基础设施进行监控、管理的管理系统。 Gallagher Command Centre Server存在安全漏洞，该漏洞源于Gallagher Morpho集成中存在敏感系统信息暴露，可能导致未经授权的关键更改。以下版本受到影响：9.30版本至vEL9.30.2482之前版本、9.20版本至vEL9.20.2819之前版本、9.10版本至vEL9.10.3672之前版本、9.00版本至vEL9.00.3831之前版本和8.90及之前所有版本。

Description (English)

Gallagher Command Centre Server is a management system for the control and management of building infrastructure at Gallagher, New Zealand. There is a security loophole in Gallagher Company Centre Server, which stems from the exposure of sensitive system information in the Gallagher Morpho integration, which may lead to unauthorized and critical changes. The following versions were affected: 9.30 to vEL9.30.2482, 9.20 to vEL9.20.2819, 9.10 to vEL9.10.3672, 9.00 to vEL9.00.3831 and 8.90 and all previous versions.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Gallagher

Published

2025-10-23

Last Modified

2026-02-24

References

https://security.gallagher.com/en-NZ/Security-Advisories/CVE-2025-47699

Patch

https://security.gallagher.com/en-NZ/Security-Advisories/CVE-2025-47699

Share on: