← Back to home
ICSA-21-180-01  ·  Published 2021-06-29  ·  View on CISA ICS-CERT ↗

Exacq Technologies exacqVision Web Service

CVSS 5.3 MEDIUM

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to send malicious requests on behalf of the victim.

CVEs (1)

Remediations

  • Johnson Controls recommends upgrading all previous versions of exacqVision Web Service to v21.06
  • For more detailed mitigation instructions, please see Johnson Controls Product Security Advisory JCI-PSA-2021-09 v1
  • Additional security notices and product security guidance can be found at the Johnson Control ICS Product Security page.

Affected Vendors

Exacq Technologies, Johnson Controls Inc.

Affected Products (1)

Exacq Technologies, Johnson Controls Inc. · exacqVision Web Service <= 21.03

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more