2 matches found
CVE-2019-7588
CVE-2019-7588 affects exacqVision Enterprise System Manager (ESM) v5.12.2 and earlier on Windows. Root cause is improper authorization (CWE-285): by design, low‑privilege accounts receive excessive directory permissions, enabling application file changes and potential privilege escalation through...
Johnson Controls exacqVision Enterprise System Manager
1. EXECUTIVE SUMMARY CVSS v3 6.7 Vendor: Johnson Controls Equipment: exacqVision Enterprise System Manager ESM Vulnerability: Improper Authorization 2. RISK EVALUATION Successful exploitation of this vulnerability could allow malicious code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS...