An Incorrect Privilege Assignment (CWE-266) vulnerability in the Command Centre Server allows an authenticated operator with limited privileges to perform some operations that they would not normally be authorized to perform. Version of Command Centre affected: 9.50 prior to vEL9.50.1587(MR1), 9.40 prior to vEL9.40.3130(MR3), 9.30 prior to vEL9.30.3983(MR5), 9.20 prior to vEL9.20.4349(MR7), all versions of 9.10.
Metrics
Affected Vendors & Products
References
History
Wed, 08 Jul 2026 05:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated Operator Privilege Escalation in Gallagher Command Centre Server |
Tue, 07 Jul 2026 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated Operator Privilege Escalation in Gallagher Command Centre Server |
Tue, 07 Jul 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 07 Jul 2026 05:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An Incorrect Privilege Assignment (CWE-266) vulnerability in the Command Centre Server allows an authenticated operator with limited privileges to perform some operations that they would not normally be authorized to perform. Version of Command Centre affected: 9.50 prior to vEL9.50.1587(MR1), 9.40 prior to vEL9.40.3130(MR3), 9.30 prior to vEL9.30.3983(MR5), 9.20 prior to vEL9.20.4349(MR7), all versions of 9.10. | |
| Weaknesses | CWE-266 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Gallagher
Published:
Updated: 2026-07-07T13:37:52.035Z
Reserved: 2026-03-01T23:45:09.665Z
Link: CVE-2026-26053
Updated: 2026-07-07T13:37:47.694Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-08T05:00:05Z