Vulnerabilities > Johnsoncontrols > Exacqvision Server
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-08-01 | CVE-2024-32758 | Inadequate Encryption Strength vulnerability in Johnsoncontrols Exacqvision Client and Exacqvision Server Under certain circumstances the communication between exacqVision Client and exacqVision Server will use insufficient key length and exchange | 7.5 |
2024-08-01 | CVE-2024-32865 | Improper Certificate Validation vulnerability in Johnsoncontrols Exacqvision Server 21.06.11.0/9.6/9.8 Under certain circumstances the exacqVision Server will not properly validate TLS certificates provided by connected devices. | 7.3 |
2021-10-11 | CVE-2021-27665 | Integer Overflow or Wraparound vulnerability in Johnsoncontrols Exacqvision Server 21.06.11.0 An unauthenticated remote user could exploit a potential integer overflow condition in the exacqVision Server with a specially crafted script and cause denial-of-service condition. | 7.5 |
2019-07-19 | CVE-2019-7590 | Unquoted Search Path or Element vulnerability in Johnsoncontrols Exacqvision Server 9.6/9.8 ExacqVision Server’s services 'exacqVisionServer', 'dvrdhcpserver' and 'mdnsresponder' have an unquoted service path. | 7.8 |