CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Johnsoncontrols: >> Cevas Security Vulnerabilities

CVE-2021-36206

All versions of CEVAS prior to 1.01.46 do not sufficiently validate user-controllable input and could allow a user to bypass authentication and retrieve data with specially crafted SQL queries.

CVSS Score

10.0

EPSS Score

0.001

Published

2022-10-28

Page 1

Vulnerabilities

Vulnerable Software

Johnsoncontrols: >> Cevas Security Vulnerabilities

Products

Pricing

Contact Us