CVE-2025-46406 Information

Description

A Privilege Context Switching Error (CWE-270) in the Command Center Server could allow a privileged Operator with high level access in one Division to perform limited privileged activities across the Division boundary.

This issue affects Command Centre Server:

9.30 prior to 9.30.1874 (MR1) 9.20 prior to 9.20.2337 (MR3) 9.10 prior to 9.10.3194 (MR6) 9.00 prior to 9.00.3371 (MR7) all versions of 8.90 and prior.

Reference

https://security.gallagher.com/en-NZ/Security-Advisories/CVE-2025-46406

Related CNNVD

CNNVD-202507-1371 (Published: 2025-07-10)