← Back to home
ICSA-21-077-01  ·  Published 2021-03-18  ·  View on CISA ICS-CERT ↗

Johnson Controls Exacq Technologies exacqVision

CVSS 5.3 MEDIUM

Risk Summary

Successful exploitation of this vulnerability could allow an unauthenticated attacker to view system-level information about the exacqVision Web Service and the operating system.

CVEs (1)

Remediations

  • Johnson Controls recommends users upgrade exacqVision Web Service to v21.03 or higher.
  • For more detailed mitigation instructions, please see Johnson Controls Product Security Advisory JCI-PSA-2021-03.

Affected Vendors

Exacq Technologies, Johnson Controls Inc.

Affected Products (1)

Exacq Technologies, Johnson Controls Inc. · exacqVision Web Service <= v20.12.02.0

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more