Filter
AND

Software

johnsoncontrols metasys extended application and data server
8
johnsoncontrols f4-snc firmware
2
johnsoncontrols kantech entrapass
2
johnsoncontrols c-cure web
1
johnsoncontrols iosmart gen 1
1
johnsoncontrols iosmart gen 1 firmware
1
johnsoncontrols kantech kt-1 door controller firmware
1
johnsoncontrols metasys for validated environments
1
johnsoncontrols network controller
1
johnsoncontrols network controller firmware
1
johnsoncontrols snc16120-0
1
johnsoncontrols snc16120-0 firmware
1
johnsoncontrols snc16120-04
1
johnsoncontrols snc16120-04 firmware
1
johnsoncontrols snc25150-0
1
johnsoncontrols snc25150-0 firmware
1
johnsoncontrols snc25150-04
1
johnsoncontrols snc25150-04 firmware
1
johnsoncontrols sne10500
1
johnsoncontrols sne10500 firmware
1
johnsoncontrols sne11000
1
johnsoncontrols sne11000 firmware
1
johnsoncontrols sne110l0
1
johnsoncontrols sne110l0 firmware
1
johnsoncontrols sne22000
1
johnsoncontrols sne22000 firmware
1
johnsoncontrols victor web
1
johnsoncontrols victor web client
1
johnsoncontrols videoedge
1

Johnsoncontrols VideoedgeVideoEdge config

high
7.1
First published (updated )
CVE-2023-3749

Johnsoncontrols Iosmart Gen 1 FirmwareKantech Gen1 ioSmart card reader

high
7.5
First published (updated )
CVE-2023-0248

Johnsoncontrols C-cure Webvictor Web Client and C•CURE Web Client JSON Web Token (JWT) Vulnerability

high
7.1
First published (updated )
CVE-2020-9049

exacqVision ServerexacqVision Server 32-bit

high
7.5
First published (updated )
CVE-2021-27665

Johnson Controls MetasysMetasys UI

high
8.8
First published (updated )
CVE-2021-36202

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

exacqVision ServerexacqVision Server Unquoted Service Path

high
7.8
First published (updated )
CVE-2019-7590

Johnson Controls MetasysMetasys Improper Privilege Management

high
8.8
First published (updated )
CVE-2021-27657

Johnsoncontrols Kantech Kt-1 Door Controller FirmwareKT-1 Capture-replay

high
8.6
First published (updated )
CVE-2021-27662

Johnson Controls MetasysMetasys privilege management

high
8.8
First published (updated )
CVE-2021-36207

Johnson Controls Facility Explorer SNC Series Supervisory ControllerFacility Explorer

high
8.8
First published (updated )
CVE-2021-27661

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Johnson Controls MetasysMetasys password guessing

high
7.5
First published (updated )
CVE-2022-21935

Johnsoncontrols Victor Web Clientvictor Web Client - Arbitrary File Deletion Vulnerability

high
8.1
First published (updated )
CVE-2020-9048

Johnson Controls MetasysMetasys Unverified Password Change

high
8.8
First published (updated )
CVE-2022-21934

Johnson Controls MetasysMetasys CSS

high
8.7
First published (updated )
CVE-2022-21937

Johnson Controls MetasysMetasys MUI Graphics XSS

high
8.1
First published (updated )
CVE-2022-21938

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

exacqVision Web ServiceexacqVison - HTTPS Session Establishment

high
8.1
First published (updated )
CVE-2024-32864

exacqVision ServerexacqVison - TLS certificate validation

high
7.3
First published (updated )
CVE-2024-32865

exacqVision Web ServiceexacqVision CORS

high
8.1
First published (updated )
CVE-2024-32862

exacqVision Web ServiceexacqVison - CSRF issues with Web Service

high
8.8
First published (updated )
CVE-2024-32863

Johnson Controls MetasysMetasys Reporting Engine (MRE) Web Services - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

high
7.5
First published (updated )
CVE-2020-9050

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Johnsoncontrols Kantech EntrapassKantech EntraPass Security Management Software - System Permissions Vulnerability

high
8.8
First published (updated )
CVE-2020-9046

Johnsoncontrols Kantech EntrapassEntrapass

high
8.3
First published (updated )
CVE-2021-36198

Johnson Controls MetasysInsufficiently Protected Credentials in Metasys

high
7.8
First published (updated )
CVE-2021-36204

Sensormatic Electronics, LLC, a subsidiary of Johnson Controls C-CURE 9000C-CURE 9000

high
8.8
First published (updated )
CVE-2021-27660

exacqVision Web ServiceexacqVision Web Services - Information Exposure

high
7.5
First published (updated )
CVE-2021-27656

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Johnsoncontrols Metasys Extended Application And Data ServerMetasys MVE

high
8.1
First published (updated )
CVE-2022-21936

Johnson Controls MetasysSensitive cookie without 'HttpOnly' flag in System Configuration Tool (SCT)

high
7.5
First published (updated )
CVE-2022-21939

Johnson Controls MetasysSensitive Cookie in HTTPS Session Without 'Secure' Attribute in System Configuration Tool (SCT)

high
7.5
First published (updated )
CVE-2022-21940

Johnsoncontrols F4-snc FirmwareUncontrolled Resource Consumption in Metasys and Facility Explorer

high
7.5
First published (updated )
CVE-2023-4486

Johnson Controls, Inc. Software House C●CURE 9000CCURE passwords exposed to administrators

high
8.5
First published (updated )
CVE-2024-0912

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203