Lucene search

CVE-2021-27656

🗓️ 18 Mar 2021 18:13:15Reported by jciType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 62 Views

A vulnerability in exacqVision Web Service 20.12.2.0 and prior could allow an unauthenticated attacker to view system-level information

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
NVD	CVE-2021-27656	18 Mar 202118:15	–	nvd
ICS	Johnson Controls Exacq Technologies exacqVision	18 Mar 202100:00	–	ics
Prion	Design/Logic Flaw	18 Mar 202118:15	–	prion
Tenable Nessus	Johnson Controls exacqVision Web Service Information Disclosure (JCI-PSA-2021-03)	30 Jun 202100:00	–	nessus
Cvelist	CVE-2021-27656 exacqVision Web Services - Information Exposure	18 Mar 202117:58	–	cvelist
CNVD	Johnson Controls exacqVision Web Service Unauthorized Access Vulnerability	19 Mar 202100:00	–	cnvd

Nvd

Node

johnsoncontrols exacqvision_web_serviceRange≤20.12.2.0

[
  {
    "product": "exacqVision Web Service version 20.12.2.0 and prior",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "lessThanOrEqual": "20.12.2.0",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
johnsoncontrols	www.johnsoncontrols.com/cyber-solutions/security-advisories
us-cert	www.us-cert.cisa.gov/ics/advisories/icsa-21-077-01

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Mar 2021 18:15Current

6.2Medium risk

Vulners AI Score6.2

CVSS25

CVSS35.3 - 7.5

EPSS0.00246

CWE-862