CVE-2020-9049

A vulnerability in specified versions of American Dynamics victor Web Client and Software House C•CURE Web Client could allow an unauthenticated attacker on the network to create and sign their own JSON Web Token and use it to execute an HTTP API Method without the need for valid...

CVE-2020-9049

A vulnerability in specified versions of American Dynamics victor Web Client and Software House C•CURE Web Client could allow an unauthenticated attacker on the network to create and sign their own JSON Web Token and use it to execute an HTTP API Method without the need for valid...

CVE-2020-9049

CVE-2020-9049 affects Johnson Controls Victor Web Client and Software House C•CURE Web Client. Affected products: victor Web Client up to v5.6 and C•CURE Web Client up to v2.90; mitigations include upgrading to victor v5.6 SP1 and C•CURE Web Client v2.70+ with updates (Web Client_c2.70_5.2_Update...

Johnson Controls Victor Web Client Authorization Issues Vulnerability

Johnson Controls Victor Web Client is a video management system of the United States Johnson Controls Johnson Controls company's Web client. The program allows users to view surveillance video from the video management system, check the status of equipment and other functions. An authorization...

CVE-2020-9048

A vulnerability in specified versions of American Dynamics victor Web Client and Software House CCURE Web Client could allow a remote unauthenticated attacker on the network to delete arbitrary files on the system or render the system unusable by conducting a Denial of Service attack...

PT-2020-20461 · American Dynamics +1 · American Dynamics Victor Web Client +1

Name of the Vulnerable Software and Affected Versions: American Dynamics victor Web Client versions up to and including v5.4.1 Software House CCURE Web Client affected versions not specified Description: A remote unauthenticated attacker on the network could delete arbitrary files on the system o...