CVE-2021-41297
CVE-2021-41297 affects ECOA BAS controller family (building automation controllers) and is due to a weak access-control mechanism that can allow an authenticated user to obtain administrative credentials in clear text, enabling remote privilege escalation. The vulnerability is documented across m...