CVE-2020-16102: 
Gallagher Command Centre vulnerability analysis and mitigation

CVE-2020-16102 is an Improper Authentication vulnerability discovered in Gallagher Command Centre Server. The vulnerability affects multiple versions including Command Centre 8.30 (prior to 8.30.1299(MR2)), 8.20 (prior to 8.20.1218(MR4)), 8.10 (prior to 8.10.1253(MR6)), 8.00 (prior to 8.00.1252(MR7)), version 7.90 and prior versions. The vulnerability was disclosed on December 14, 2020 (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 8.2 (High severity) with the following vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H. The attack vector is network-based, requires low attack complexity, needs no privileges or user interaction, has an unchanged scope, no impact on confidentiality, low impact on integrity, and high impact on availability (AttackerKB).

When exploited, this vulnerability allows an unauthenticated remote attacker to create items with invalid configuration, which can potentially cause the server to crash and fail to restart (Gallagher Security).

Gallagher has released maintenance updates to address this vulnerability: v8.30.1299(MR2), v8.20.1218(MR4), v8.10.1253(MR6), and v8.00.1252(MR7). As a workaround, users can configure the firewall on the Command Centre server machine to restrict access to the DCOM websocket port (8905), as recommended in the Hardening Guide (Gallagher Security).