Vulnerabilities (CVE)

Filtered by vendor Johnsoncontrols Subscribe

Filtered by product Exacqvision Web Service

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-9047	1 Johnsoncontrols	2 Exacqvision Enterprise Manager, Exacqvision Web Service	2021-05-26	9.0 HIGH	7.2 HIGH
A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterprise Manager versions 20.06.4.0 and prior. An attacker with administrative privileges could potentially download and run a malicious executable that could allow OS command injection on the system.
CVE-2021-27656	1 Johnsoncontrols	1 Exacqvision Web Service	2021-03-25	5.0 MEDIUM	7.5 HIGH
A vulnerability in exacqVision Web Service 20.12.2.0 and prior could allow an unauthenticated attacker to view system-level information about the exacqVision Web Service and the operating system.