23 matches found
EUVD-2021-14411
Malware in sbrugna...
EUVD-2019-17128
Malware in sbrugna...
EUVD-2021-14410
Malware in sbrugna...
EUVD-2024-30651
Malicious code in bioql PyPI...
EUVD-2024-30545
Malicious code in bioql PyPI...
CVE-2024-32758
Under certain circumstances the communication between exacqVision Client and exacqVision Server will use insufficient key length and exchange...
CVE-2024-32865
Under certain circumstances the exacqVision Server will not properly validate TLS certificates provided by connected devices...
Johnson Controls exacqVision Server
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.4 ATTENTION : Exploitable remotely Vendor : Johnson Controls, Inc. Equipment : exacqVision Server Vulnerability : Improper Certificate Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform a...
PT-2024-5766 · Unknown · Exacqvision Server +1
Name of the Vulnerable Software and Affected Versions: exacqVision Client and exacqVision Server affected versions not specified Description: The issue is related to insufficient key length and exchange in the communication between exacqVision Client and exacqVision Server, which may allow a remo...
Johnson Controls exacqVision Server 信息泄露漏洞
Johnson Controls exacqVision Server is a surveillance video management software from Johnson Controls, a U.S. company. Johnson Controls is vulnerable to an information disclosure vulnerability that stems from excessive data output from the application. An attacker could use this vulnerability to...
CVE-2021-27665
An unauthenticated remote user could exploit a potential integer overflow condition in the exacqVision Server with a specially crafted script and cause denial-of-service condition...
CVE-2021-27664
Under certain configurations an unauthenticated remote user could be given access to credentials stored in the exacqVision Server...
CVE-2021-27665
An unauthenticated remote user could exploit a potential integer overflow condition in the exacqVision Server with a specially crafted script and cause denial-of-service condition...
CVE-2021-27664
Under certain configurations an unauthenticated remote user could be given access to credentials stored in the exacqVision Server...
Integer overflow
An unauthenticated remote user could exploit a potential integer overflow condition in the exacqVision Server with a specially crafted script and cause denial-of-service condition...
CVE-2021-27665
CVE-2021-27665 affects exacqVision Server 32-bit (Johnson Controls) with an integer overflow vulnerability exploitable remotely by an unauthenticated attacker via a specially crafted script to cause a denial-of-service. The issue, tracked across multiple sources, is rated CVSS v3.1 base 7.5 (HIGH...
CVE-2021-27665 exacqVision Server 32-bit
An unauthenticated remote user could exploit a potential integer overflow condition in the exacqVision Server with a specially crafted script and cause denial-of-service condition...
CVE-2021-27664
CVE-2021-27664 affects Exacq Technologies exacqVision Web Service. Root cause: improper privilege management that could allow an unauthenticated remote user to access credentials stored on the exacqVision Server. Affected product/versions: exacqVision Web Service 21.06.11.0 or older. Impact: cred...
Johnson Controls exacqVision Server 输入验证错误漏洞
Johnson Controls exacqVision Server is a suite of surveillance video management software from Johnson Controls, Inc. An input validation error vulnerability exists in exacqVision Server 32-bit, which stems from the susceptibility of the affected product to an integer overflow vulnerability. An...
CVE-2019-7590
ExacqVision Server’s services 'exacqVisionServer', 'dvrdhcpserver' and 'mdnsresponder' have an unquoted service path. If an authenticated user is able to insert code in their system root path it potentially can be executed during the application startup. This could allow the authenticated user to...