CVSS: 9.0EPSS: 7%CPEs: 2EXPL: 1CVE-2020-9047 – exacqVision Software - Improper Verification of Cryptographic Signature
https://notcve.org/view.php?id=CVE-2020-9047
26 Jun 2020 — A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterprise Manager versions 20.06.4.0 and prior. An attacker with administrative privileges could potentially download and run a malicious executable that could allow OS command injection on the system. Se presenta una vulnerabilidad que podría permitir una ejecución de código no autorizado o comandos del Sistema Opera... • https://github.com/norrismw/CVE-2020-9047 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-9046 – Kantech EntraPass Security Management Software - System Permissions Vulnerability
https://notcve.org/view.php?id=CVE-2020-9046
26 May 2020 — A vulnerability in all versions of Kantech EntraPass Editions could potentially allow an authorized low-privileged user to gain full system-level privileges by replacing critical files with specifically crafted files. Una vulnerabilidad en todas las versiones de Kantech EntraPass Editions podría permitir potencialmente a un usuario autorizado poco privilegiado obtener privilegios de nivel system completos mediante el reemplazo de los archivos críticos con archivos específicamente diseñados. • https://www.johnsoncontrols.com/cyber-solutions/security-advisories • CWE-269: Improper Privilege Management CWE-284: Improper Access Control •
CVSS: 9.9EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9045 – C•CURE 9000 and victor Video Management System - Cleartext storage of user credentials upon installation or upgrade of software.
https://notcve.org/view.php?id=CVE-2020-9045
21 May 2020 — During installation or upgrade to Software House C•CURE 9000 v2.70 and American Dynamics victor Video Management System v5.2, the credentials of the user used to perform the installation or upgrade are logged in a file. The install log file persists after the installation. Durante la instalación o actualización del Software House C-CURE 9000 versión v2.70 y American Dynamics victor Video Management System versión v5.2, las credenciales del usuario usadas para llevar a cabo la instalación o actualización son... • https://www.johnsoncontrols.com/cyber-solutions/security-advisories • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2019-7589 – Kantech EntraPass Improper Input Validation
https://notcve.org/view.php?id=CVE-2019-7589
10 Mar 2020 — A vulnerability with the SmartService API Service option exists whereby an unauthorized user could potentially exploit this to upload malicious code to the server that could be executed at system level privileges. This affects Johnson Controls' Kantech EntraPass Corporate Edition versions 8.0 and prior; Kantech EntraPass Global Edition versions 8.0 and prior. Hay una vulnerabilidad con la opción SmartService API Service por la cual un usuario no autorizado podría explotar esto para cargar código malicioso e... • https://www.johnsoncontrols.com/cyber-solutions/security-advisories • CWE-20: Improper Input Validation •
CVSS: 9.1EPSS: 0%CPEs: 35EXPL: 0CVE-2020-9044 – Metasys Improper Restriction of XML External Entity Reference
https://notcve.org/view.php?id=CVE-2020-9044
10 Mar 2020 — XXE vulnerability exists in the Metasys family of product Web Services which has the potential to facilitate DoS attacks or harvesting of ASCII server files. This affects Johnson Controls' Metasys Application and Data Server (ADS, ADS-Lite) versions 10.1 and prior; Metasys Extended Application and Data Server (ADX) versions 10.1 and prior; Metasys Open Data Server (ODS) versions 10.1 and prior; Metasys Open Application Server (OAS) version 10.1; Metasys Network Automation Engine (NAE55 only) versions 9.0.1,... • https://www.johnsoncontrols.com/cyber-solutions/security-advisories • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2019-7594 – Metasys use of hardcoded RC2 key
https://notcve.org/view.php?id=CVE-2019-7594
20 Aug 2019 — Metasys® ADS/ADX servers and NAE/NIE/NCE engines prior to 9.0 make use of a hardcoded RC2 key for certain encryption operations involving the Site Management Portal (SMP). Los servidores Metasys® ADS/ADX y los motores NAE/NIE/NCE en versiones anteriores a la 9.0 utilizan una clave RC2 codificada para ciertas operaciones de cifrado que involucran el Portal de Administración del Sitio (SMP). • https://www.johnsoncontrols.com/-/media/jci/cyber-solutions/product-security-advisories/2019/jci-psa-2019-06-v1-metasys-icsa-19-227-01.pdf • CWE-321: Use of Hard-coded Cryptographic Key CWE-798: Use of Hard-coded Credentials •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2019-7593 – Metasys use of shared RSA key pairs
https://notcve.org/view.php?id=CVE-2019-7593
20 Aug 2019 — Metasys® ADS/ADX servers and NAE/NIE/NCE engines prior to 9.0 make use of a shared RSA key pair for certain encryption operations involving the Site Management Portal (SMP). Los servidores Metasys® ADS/ADX y los motores NAE/NIE/NCE en versiones anteriores a la 9.0 hacen uso de un par de claves RSA compartidas para ciertas operaciones de cifrado que involucran el Portal de administración del sitio (SMP). • https://www.johnsoncontrols.com/-/media/jci/cyber-solutions/product-security-advisories/2019/jci-psa-2019-06-v1-metasys-icsa-19-227-01.pdf • CWE-323: Reusing a Nonce, Key Pair in Encryption CWE-798: Use of Hard-coded Credentials •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2019-7590 – exacqVision Server Unquoted Service Path
https://notcve.org/view.php?id=CVE-2019-7590
19 Jul 2019 — ExacqVision Server’s services 'exacqVisionServer', 'dvrdhcpserver' and 'mdnsresponder' have an unquoted service path. If an authenticated user is able to insert code in their system root path it potentially can be executed during the application startup. This could allow the authenticated user to elevate privileges on the system. This issue affects: Exacq Technologies, Inc. exacqVision Server 9.6; 9.8. This issue does not affect: Exacq Technologies, Inc. exacqVision Server version 9.4 and prior versions; 19... • http://www.securityfocus.com/bid/109307 • CWE-428: Unquoted Search Path or Element •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-10624 – Johnson Controls Metasys and BCPro Generation of Error Message Containing Sensitive Information
https://notcve.org/view.php?id=CVE-2018-10624
01 Aug 2018 — In Johnson Controls Metasys System Versions 8.0 and prior and BCPro (BCM) all versions prior to 3.0.2, this vulnerability results from improper error handling in HTTP-based communications with the server, which could allow an attacker to obtain technical information. En Johnson Controls Metasys System en versiones 8.0 y anteriores y BCPro (BCM) en todas las versiones anteriores a la 3.0.2, esta vulnerabilidad resulta de un manejo de errores incorrecto en las comunicaciones HTTP con el servidor, lo que podrí... • http://www.securityfocus.com/bid/104937 • CWE-209: Generation of Error Message Containing Sensitive Information CWE-388: 7PK - Errors •
CVSS: 7.5EPSS: 0%CPEs: 13EXPL: 0CVE-2014-5427
https://notcve.org/view.php?id=CVE-2014-5427
29 Mar 2015 — Johnson Controls Metasys 4.1 through 6.5, as used in Application and Data Server (ADS), Extended Application and Data Server (aka ADX), LonWorks Control Server 85 LCS8520, Network Automation Engine (NAE) 55xx-x, Network Integration Engine (NIE) 5xxx-x, and NxE8500, allows remote attackers to read password hashes via a POST request. Johnson Controls Metasys 4.1 hasta 6.5, utilizado en Application and Data Server (ADS), Extended Application and Data Server (también conocido como ADX), LonWorks Control Server ... • https://ics-cert.us-cert.gov/advisories/ICSA-14-350-02 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •