Security Advisory

CVE-2026-20801

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-03 02:41:10

Last updated 2026-03-03 16:30:31

Assigner Gallagher

State PUBLISHED

Description

Cleartext Transmission of Sensitive Information (CWE-319) in a component used in the Gallagher Hanwha VMS and Gallagher NxWitness VMS integrations allows unprivileged users with local network access to view live video streams. This issue affects all versions of Gallagher NxWitness VMS integration prior to 9.10.017 and Gallagher Hanwha VMS integration prior to 9.10.025.

← Browse all CVEs View on cve.org ↗