CVE-2022-26348 : Security Advisory and Response
Command Centre Server by Gallagher is susceptible to SQL Injection via Windows Registry settings, posing a high risk of unauthorized data access. Learn about the impact and mitigation steps.
Command Centre Server by Gallagher is vulnerable to a SQL Injection via Windows Registry settings for date fields on the server, affecting multiple versions. Learn about the impact, technical details, and mitigation steps below.
Understanding CVE-2022-26348
Command Centre Server vulnerability poses a significant risk due to SQL Injection via Windows Registry settings, potentially leading to unauthorized access and data leaks.
What is CVE-2022-26348?
The vulnerability in Command Centre Server allows attackers to execute an SQL Injection attack via the Visitor Management Kiosk, compromising sensitive information stored on the Windows Server registry.
The Impact of CVE-2022-26348
With a CVSS base score of 8.2 (High Severity), the vulnerability could result in unauthorized data access, posing a threat to confidentiality, integrity, and availability of the affected systems.
Technical Details of CVE-2022-26348
The following details outline the vulnerability specifics:
Vulnerability Description
The SQL Injection flaw in Command Centre Server permits attackers to exploit Windows Registry settings for date fields, enabling the execution of arbitrary SQL queries.
Affected Systems and Versions
Gallagher Command Centre versions prior to 8.60.1652, 8.50.2245, 8.40.2216, and 8.30.1470, including version 8.20 and earlier, are susceptible to this vulnerability.
Exploitation Mechanism
By leveraging the Visitor Management Kiosk application, an attacker can manipulate the Windows Registry to execute malicious SQL queries, leading to potential data breaches.
Mitigation and Prevention
To mitigate the risks associated with CVE-2022-26348, consider the following security measures:
Immediate Steps to Take
- Implement security patches provided by Gallagher for affected Command Centre versions.
- Restrict access to the Visitor Management Kiosk to authorized users only.
Long-Term Security Practices
- Regularly monitor and audit Windows Registry settings for unauthorized changes.
- Conduct security training to educate personnel on avoiding SQL Injection vulnerabilities.
Patching and Updates
Stay updated with security advisories from Gallagher to apply necessary patches promptly and ensure the ongoing protection of the Command Centre Server.