CVE-2024-39808

Severity: Medium CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Components affected: Controller 6000 and Controller 7000 platforms

Version of Command Centre affected:   

9.10 prior to vCR9.10.240816a (distributed in 9.10.1530 (MR2)), 9.00 prior to vCR9.00.240816a (distributed in 9.00.2168 (MR4)), 8.90 prior to vCR8.90.240816a (distributed in 8.90.2155 (MR5)), 8.80 prior to vCR8.80.240816b (distributed in 8.80.1938 (MR6)), all versions of 8.70 and prior.

Reported by: Gallagher Internal

Active exploitation of vulnerability*: No

Description of vulnerability: 
Incorrect Calculation of Buffer Size (CWE-131) in the Controller 6000 and Controller 7000 OSDP message handling, allows an attacker with physical access to Controller wiring to instigate a reboot leading to a denial of service. 

Mitigation: Only sites with OSDP connected card readers are affected. Exploitation requires tampering with the reader or wiring. Ensure all card readers have been installed correctly and tamper detection guidance has been followed. 

Maintenance releases are now available for:

• v9.10 - v9.10.1530(MR2)
• v9.00 - v9.00.2168(MR4)
• v8.90 - v8.90.2155(MR5)
• v8.80 - v8.80.1938(MR6)

Important notes:

*This indicates whether Gallagher are aware of this being actively exploited against customer sites at the time of publication.