CVE-2024-41146
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-41146
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Use of Multiple Resources with Duplicate Identifier (CWE-694) in the Controller 6000 and Controller 7000 Platforms could allow an attacker with physical access to HBUS communication cabling to perform a Denial-of-Service attack against HBUS connected devices, require a device reboot to resolve. This issue affects: Controller 6000 and Controller 7000 firmware versions 9.10 prior to vCR9.10.241108a (distributed in 9.10.2149 (MR4)), 9.00 prior to vCR9.00.241108a (distributed in 9.00.2374 (MR5)), 8.90 prior to vCR8.90.241107a (distributed in 8.90.2356 (MR6)), all versions of 8.80 and prior.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用多个具有重复标识的资源
Source: NVD (National Vulnerability Database)
Vulnerability Title
Gallagher Controller 6000和Gallagher Controller 7000 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Gallagher Controller 6000和Gallagher Controller 7000都是新西兰Gallagher公司的产品。Gallagher Controller 6000是一个 Gallagher 命令中心服务器和分布式现场硬件之间的接口。Gallagher Controller 7000是一款功能强大的网络连接控制器。 Gallagher Controller 6000和Gallagher Controller 7000存在安全漏洞,该漏洞源于使用具有重复标识符的多个资源,可能允许
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Gallagher | Controller 6000 and Controller 7000 | 0 ~ 8.80 | - |
II. Public POCs for CVE-2024-41146
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-41146
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same product: Controller 6000 and Controller 7000
Same weakness: CWE-694
- CVE-2026-5794
Vulnerability in Cryptobox allows an authenticated user to t - CVE-2025-13609
Keylime: keylime: registrar allows identity takeover via dup - CVE-2022-23721
PingID integration for Windows login duplicate username coll - CVE-2023-20100
Cisco IOS XE Software for Wireless LAN Controllers CAPWAP Jo - CVE-2021-3436
BT: Possible to overwrite an existing bond during keys distr
V. Comments for CVE-2024-41146
No comments yet