Lucene search
China National Vulnerability DatabaseCNVD-2022-61629HistoryApr 13, 2022 - 12:00 a.m.
KevinLAB Building Energy Management System Access Control Error Vulnerability
2022-04-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
kevinlab
energy management
access control
vulnerability
network system
unauthorized access
administrator privileges
EPSS
0.001
Percentile
44.1%
KevinLAB Building Energy Management System is a building energy management system from KevinLAB Korea.An access control error vulnerability exists in KevinLAB Building Energy Management System version 1.0.0, which stems from a network system or The product does not properly restrict access to resources from unauthorized roles. An attacker could exploit this vulnerability to log in and gain control of the system using a backend account with the highest administrator privileges.
Related
zeroscience
zeroscience
KevinLAB BEMS 1.0 Undocumented Backdoor Account
2021-07-20 00:00:00
cvelist
cvelist
CVE-2021-37292
2022-04-11 18:13:14
prion
prion
Improper access control
2022-04-11 19:15:00
cve
cve
CVE-2021-37292
2022-04-11 19:15:07
nvd
nvd
CVE-2021-37292
2022-04-11 19:15:07