High severity8.2NVD Advisory· Published Aug 30, 2021· Updated Jun 17, 2026
CVE-2021-27663
CVE-2021-27663
Description
A vulnerability in versions 10.1 through 10.5 of Johnson Controls CEM Systems AC2000 allows a remote attacker to access to the system without adequate authorization. This issue affects: Johnson Controls CEM Systems AC2000 10.1; 10.2; 10.3; 10.4; 10.5.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=10.1, <=10.5+ 1 more
- (no CPE)range: >=10.1, <=10.5
- (no CPE)range: 10.1
Patches
Vulnerability mechanics
References
2- us-cert.gov/ics/advisories/ICSA-21-238-01nvdThird Party AdvisoryUS Government Resource
- www.johnsoncontrols.com/cyber-solutions/security-advisoriesnvdVendor Advisory
News mentions
0No linked articles in our index yet.