VYPR

CEVAS

by Johnson Controls

CVEs (1)

  • CVE-2021-36206CriOct 28, 2022
    risk 0.65cvss 10.0epss 0.00

    All versions of CEVAS prior to 1.01.46 do not sufficiently validate user-controllable input and could allow a user to bypass authentication and retrieve data with specially crafted SQL queries.