CVE-2025-47147 is a vulnerability classified under CWE-312, indicating cleartext storage of sensitive information within the Gallagher Command Centre Mobile Client application on Android and iOS platforms. The flaw exists in versions prior to 9.40.123, where session tokens used for authenticating operators are stored unencrypted on the device. This insecure storage allows an attacker who gains access to a logged-in operator's mobile device—either physically or through malware with elevated privileges—to extract these tokens. With the stolen session token, the attacker can impersonate the operator and access the Command Centre system for a limited duration until the token expires or is invalidated. The vulnerability does not require user interaction but does require the attacker to have high privileges on the device, limiting remote exploitation. The CVSS v3.1 score is 5.7 (medium), reflecting the attack vector as local, high attack complexity, and high privileges required. The impact affects confidentiality and integrity by enabling unauthorized access but does not impact availability. No patches or exploits in the wild are currently documented, but the risk remains significant for environments where mobile device security is weak or devices are lost or stolen. Gallagher Command Centre is widely used in physical security management, making this vulnerability relevant to organizations managing access control and security operations.

The primary impact of this vulnerability is unauthorized access to the Gallagher Command Centre system through stolen session tokens, compromising confidentiality and integrity of security operations. Attackers could potentially manipulate security settings, view sensitive access logs, or disrupt monitoring by impersonating legitimate operators. This could lead to unauthorized physical access, data breaches, or sabotage of security infrastructure. The limited duration of token validity somewhat constrains the window of exploitation, but persistent attackers with repeated access to devices could maintain unauthorized access. Organizations with high reliance on mobile clients for security management, such as critical infrastructure, government facilities, and large enterprises, face elevated risks. The vulnerability does not directly affect system availability but undermines trust in security controls and operator authentication. The requirement for local high privilege access reduces the likelihood of widespread remote exploitation but highlights the importance of mobile device security hygiene.

Organizations should immediately upgrade the Gallagher Command Centre Mobile Client to version 9.40.123 or later, where this vulnerability is addressed. Until upgrades are deployed, enforce strict mobile device management (MDM) policies including strong device encryption, secure lock screens, and remote wipe capabilities to reduce risk from lost or stolen devices. Limit operator privileges on mobile devices and monitor for unusual access patterns to detect potential token misuse. Educate operators on the importance of device security and the risks of leaving devices unattended or jailbroken/rooted. Implement network-level controls to restrict Command Centre access to trusted devices and IP ranges. Regularly audit session token lifetimes and consider reducing token validity periods to minimize exposure. Finally, Gallagher should provide a patch or update with encrypted token storage and consider multi-factor authentication to further protect session integrity.