Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

CNVD
CNVDadded 2020/03/11 12:0 a.m.2 views

Johnson Controls Kantech EntraPass Input Validation Error Vulnerability

Johnson Controls Kantech EntraPass is a menu-driven security management system from Johnson Controls, Inc. An input validation error vulnerability exists in the SmartService API Service option in Johnson Controls Kantech EntraPass Corporate Edition 8.0 and earlier and Kantech EntraPass Global...

10CVSS7.3AI score0.00268EPSS
Exploits0References1
OSV
OSVadded 2020/03/10 8:15 p.m.1 views

CVE-2019-7589

A vulnerability with the SmartService API Service option exists whereby an unauthorized user could potentially exploit this to upload malicious code to the server that could be executed at system level privileges. This affects Johnson Controls' Kantech EntraPass Corporate Edition versions 8.0 and...

9.8CVSS7.3AI score0.00268EPSS
Exploits0References2
Rows per page
Query Builder