Vulnerabilities > Johnsoncontrols > C Cure 9000 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2021-07-01 CVE-2021-27660 Improper Input Validation vulnerability in Johnsoncontrols C-Cure 9000 Firmware 2.70
An insecure client auto update feature in C-CURE 9000 can allow remote execution of lower privileged Windows programs.
network
low complexity
johnsoncontrols CWE-20
8.8