EUVD-2021-14402

Malware in sbrugna...

EUVD-2024-30701

Malicious code in bioql PyPI...

Johnson Controls exacqVision Web Service

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Johnson Controls, Inc. Equipment : Web Service Vulnerability : Use of GET Request Method With Sensitive Query Strings 2. RISK EVALUATION Successful exploitation of this vulnerability could...

CVE-2021-27659

exacqVision Web Service 21.03 does not sufficiently validate, filter, escape, and/or encode user-controllable input before it is placed in output that is used as a web page that is served to other users...

CVE-2021-27659

exacqVision Web Service 21.03 does not sufficiently validate, filter, escape, and/or encode user-controllable input before it is placed in output that is used as a web page that is served to other users...

Johnson Controls exacqVision Web Service 跨站脚本漏洞

Johnson Controls exacqVision Web Service is a Johnson Controls, Inc. program that supports viewing live video, searching and playing video using a Web browser. A security vulnerability exists in exacqVision Web Service 21.03, which arises from insufficient validation, filtering, escaping, and...

Johnson Controls exacqVision Web Service Unauthorized Access Vulnerability

Johnson Controls exacqVision Web Service is a Johnson Controls program that supports the use of a Web browser to view live video, search and playback video. A security vulnerability exists in exacqVision Web Service version 20.12.2.0 and prior versions, which arises from a lack of authentication...

Design/Logic Flaw

A vulnerability in exacqVision Web Service 20.12.2.0 and prior could allow an unauthenticated attacker to view system-level information about the exacqVision Web Service and the operating system...

CVE-2021-27656

CVE-2021-27656 affects exacqVision Web Service (all versions ≤ 20.12.02.0). It enables an unauthenticated attacker to view system-level information about the Web Service and the operating system due to insufficient authentication (information disclosure). The vulnerability is documented by Johnso...

Johnson Controls exacqVision Web Service 信息泄露漏洞

Johnson Controls exacqVision Web Service is a Johnson Controls program that supports the use of a Web browser to view live video, search and playback video. A security vulnerability exists in exacqVision Web Service version 20.12.2.0 and prior versions, which arises from a lack of authentication...

CVE-2020-9047

A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterprise Manager versions 20.06.4.0 and prior. An attacker with administrative privileges could...

CVE-2020-9047

A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterprise Manager versions 20.06.4.0 and prior. An attacker with administrative privileges could...