Browse all 65 CVE security advisories affecting Gallagher. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Gallagher operates primarily as a provider of physical security solutions, specializing in access control, time and attendance, and video management systems for enterprise environments. Historically, its software ecosystem has been susceptible to a range of critical vulnerabilities, including remote code execution, cross-site scripting, and privilege escalation flaws. These weaknesses often stem from insufficient input validation and improper access controls within its web-based management interfaces. Notable incidents have revealed that attackers can exploit these defects to gain unauthorized administrative access or execute arbitrary commands on affected servers. The accumulation of 65 recorded CVEs highlights persistent challenges in securing its legacy and modern platforms against sophisticated cyber threats. Organizations deploying Gallagher solutions must prioritize rigorous patch management and network segmentation to mitigate the risk of compromise, given the sensitive nature of the physical security data these systems manage.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-52578 | Gallagher HBUS Devices 安全漏洞 — High Sec End of Line ModuleCWE-335 | 5.7 | Medium | 2025-11-18 |
This page lists every published CVE security advisory associated with Gallagher. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.