PT-2026-22716 · Gallagher+1 · Gallagher Command Centre Server+1
Published
2026-03-03
·
Updated
2026-03-03
·
CVE-2026-20757
CVSS v3.1
2.5
Low
| Vector | AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
Gallagher Command Centre Server versions prior to 9.40.1976 (MR1)
Gallagher Command Centre Server versions prior to 9.30.3382 (MR4)
Gallagher Command Centre Server versions prior to 9.20.3783 (MR6)
Gallagher Command Centre Server versions prior to 9.10.4647 (MR9)
Gallagher Command Centre Server versions 9.00 and prior
Description
An improper locking issue exists in the Gallagher Morpho integration. A privileged operator can trigger a limited denial-of-service condition in the Command Centre Server.
Recommendations
Update Gallagher Command Centre Server to version 9.40.1976 (MR1) or later.
Update Gallagher Command Centre Server to version 9.30.3382 (MR4) or later.
Update Gallagher Command Centre Server to version 9.20.3783 (MR6) or later.
Update Gallagher Command Centre Server to version 9.10.4647 (MR9) or later.
Fix
DoS
Improper Locking
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Gallagher Command Centre Server
Morpho