Vulnerabilities > Johnsoncontrols > Exacqvision Server

DATE CVE VULNERABILITY TITLE RISK
2024-08-01 CVE-2024-32758 Inadequate Encryption Strength vulnerability in Johnsoncontrols Exacqvision Client and Exacqvision Server
Under certain circumstances the communication between exacqVision Client and exacqVision Server will use insufficient key length and exchange
network
low complexity
johnsoncontrols CWE-326
7.5
2024-08-01 CVE-2024-32865 Improper Certificate Validation vulnerability in Johnsoncontrols Exacqvision Server 21.06.11.0/9.6/9.8
Under certain circumstances the exacqVision Server will not properly validate TLS certificates provided by connected devices.
low complexity
johnsoncontrols CWE-295
7.3
2021-10-11 CVE-2021-27665 Integer Overflow or Wraparound vulnerability in Johnsoncontrols Exacqvision Server 21.06.11.0
An unauthenticated remote user could exploit a potential integer overflow condition in the exacqVision Server with a specially crafted script and cause denial-of-service condition.
network
low complexity
johnsoncontrols CWE-190
7.5
2019-07-19 CVE-2019-7590 Unquoted Search Path or Element vulnerability in Johnsoncontrols Exacqvision Server 9.6/9.8
ExacqVision Server’s services 'exacqVisionServer', 'dvrdhcpserver' and 'mdnsresponder' have an unquoted service path.
local
low complexity
johnsoncontrols CWE-428
7.8