2 matches found
Critical Bugs in Rockwell, Johnson Controls ICS Gear
Security vulnerabilities that require very little skill to exploit have been discovered in industrial control systems ICS gear from Rockwell Automation and Johnson Controls, which anchor a flurry of bug disclosures impacting critical infrastructure. First, a set of critical vulnerabilities in...
CVE-2019-7589
CVE-2019-7589 concerns Johnson Controls Kantech EntraPass EntraPass Corporate/Global Edition (Version 8.0 and earlier) with an improper input validation vulnerability in the SmartService API Service option. The issue could allow an unauthenticated, remote attacker to upload and execute malicious ...