CVE-2025-41402 is a vulnerability classified under CWE-602, indicating improper enforcement of server-side security on the client side within the Gallagher Command Centre Server product. The issue arises because the system relies on client-side validation to enforce competency expiry checks for privileged operators. This design flaw allows a privileged operator to input invalid competency data that bypasses expiry validations, effectively extending or circumventing competency requirements without proper authorization. The vulnerability affects multiple versions of the Command Centre Server, specifically all versions 9.00 and prior, and versions 9.10, 9.20, and 9.30 prior to their respective maintenance releases (MR7, MR4, and MR2). The CVSS v3.1 base score is 5.5, indicating a medium severity level. The attack vector is local (AV:L), requiring low attack complexity (AC:L) and privileges (PR:L), but no user interaction (UI:N). The impact is limited to integrity (I:H), with no confidentiality or availability impact. No public exploits have been reported yet, but the vulnerability could allow malicious or negligent privileged users to undermine security policies by falsifying competency data, which may affect operational security and compliance. The root cause is the reliance on client-side enforcement rather than robust server-side validation, a common security anti-pattern. Remediation involves applying patches from Gallagher once available and enhancing server-side validation mechanisms to reject invalid data regardless of client input.

For European organizations, especially those relying on Gallagher Command Centre Server for physical security management, this vulnerability poses a risk to the integrity of competency data that governs operator privileges and access controls. By bypassing expiry checks, malicious insiders or compromised privileged accounts could maintain unauthorized access or perform actions beyond their authorized competency period, potentially leading to unauthorized physical access or failure to comply with regulatory requirements. This could undermine security postures in critical infrastructure sectors such as energy, transportation, government facilities, and large enterprises that use Gallagher systems extensively. The impact is primarily on data integrity and operational security rather than confidentiality or availability. However, the ability to falsify competency data could facilitate further insider threats or operational errors. Given the medium severity and requirement for privileged local access, the threat is more relevant to organizations with insufficient access controls or monitoring of privileged users. Failure to address this vulnerability could result in regulatory non-compliance and increased risk of insider misuse.

1. Apply Gallagher vendor patches as soon as they become available for affected versions to ensure server-side validation is properly enforced. 2. Until patches are deployed, restrict privileged operator access strictly to trusted personnel and enforce the principle of least privilege. 3. Implement enhanced audit logging and monitoring of competency data changes to detect suspicious or invalid entries promptly. 4. Conduct regular reviews and validations of competency records to identify anomalies or unauthorized extensions. 5. Strengthen internal policies and training to reduce the risk of misuse by privileged operators. 6. Where possible, isolate Command Centre Server management interfaces to secure network segments and require multi-factor authentication for privileged access. 7. Engage with Gallagher support to confirm patch availability and verify that server-side validation improvements are included. 8. Consider additional compensating controls such as anomaly detection systems to flag unusual competency data modifications. 9. Review and update incident response plans to include scenarios involving insider threats exploiting this vulnerability.