Back to CVE List

CVE-2026-27844

LOW SEVERITY

CVSS Score & Metrics

Base Score
2.7 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

Vulnerability Description

Uncaught Exception (CWE-248) in the Controller 6000 and Controller 7000 diagnostic web interface allows an authenticated and authorized operator to trigger a Controller restart by sending specific requests, resulting in a temporary denial of service. 
Version of Command Centre affected:





* 9.50 prior to vCR9.50.260616a (distributed in 9.50.1587(MR1))
* 9.40 prior to vCR9.40.260616a (distributed in 9.40.3130(MR3))
* 9.30 prior to vCR9.30.260616a (distributed in 9.30.3983(MR5))
* 9.20 prior to vCR9.20.260616a (distributed in 9.20.4349(MR7))
* all versions of 9.10 and prior.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-248
Source
NVD
Vendor
Gallagher
Product
Controller 7000 and 6000

External References

Discussion (0)

Add Comment

No comments yet. Be the first!