CVE-2025-47147
Basic Information
| Severity | MEDIUM |
|---|---|
| Base Score | 5.7 |
| CNA | Gallagher |
| Published Date | 2026-03-02 21:39:30 UTC |
| Last Modified | 2026-03-02 21:39:30 UTC |
| CVE.org Link | https://www.cve.org/CVERecord?id=CVE-2025-47147 |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2025-47147 |
Description
Cleartext Storage of Sensitive Information (CWE-312) in the Command Centre Mobile Client on Android and iOS could allow an attacker with access to a logged-in Operator's mobile device to extract the session token and exploit access for a limited duration. This issue affects Command Centre Mobile Client versions prior to 9.40.123.
Affected Products
| Vendor | Product |
|---|---|
| gallagher | command centre mobile client |