Medium severity6.8NVD Advisory· Published Jun 26, 2020· Updated Jun 17, 2026
CVE-2020-9047
CVE-2020-9047
Description
A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterprise Manager versions 20.06.4.0 and prior. An attacker with administrative privileges could potentially download and run a malicious executable that could allow OS command injection on the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Range: <=20.06.3.0
- Range: <=20.06.4.0
- Johnson Controls/exacqVision Enterprise Manager versions 20.03.3.0 and priorv5Range: unspecified
- Johnson Controls/exacqVision Web Service versions 20.03.2.0 and priorv5Range: unspecified
Patches
Vulnerability mechanics
References
2- www.johnsoncontrols.com/cyber-solutions/security-advisoriesnvdThird Party Advisory
- www.us-cert.gov/ics/advisories/ICSA-20-170-01nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.