CVE-2024-41724 Information

Description

Improper Certificate Validation (CWE-295) in the Gallagher Command Centre SALTO integration allowed an attacker to spoof the SALTO server.

This issue affects all versions of Gallagher Command Centre prior to 9.20.1043.

Reference

https://security.gallagher.com/en-NZ/Security-Advisories/CVE-2024-41724