CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-27656

A vulnerability in exacqVision Web Service 20.12.2.0 and prior could allow an unauthenticated attacker to view system-level information about the exacqVision Web Service and the operating system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.8%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

https://us-cert.cisa.gov/ics/advisories/icsa-21-077-01
https://www.johnsoncontrols.com/cyber-solutions/security-advisories
https://us-cert.cisa.gov/ics/advisories/icsa-21-077-01
https://www.johnsoncontrols.com/cyber-solutions/security-advisories

Products affected by CVE-2021-27656

Johnsoncontrols » Exacqvision Web Service » Version: N/A

cpe:2.3:a:johnsoncontrols:exacqvision_web_service:-
Johnsoncontrols » Exacqvision Web Service » Version: 20.06.11.0

cpe:2.3:a:johnsoncontrols:exacqvision_web_service:20.06.11.0
Johnsoncontrols » Exacqvision Web Service » Version: 20.06.3.0

cpe:2.3:a:johnsoncontrols:exacqvision_web_service:20.06.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-27656

Products

Pricing

Contact Us