VYPR
Vendor

Johnson Controls

Products
35
CVEs
57
Across products
67
Status
Private

Products

35
View all 35 products →

Recent CVEs

57
View all 57 CVEs →
  • CVE-2023-2024CriMay 18, 2023
    risk 0.65cvss 10.0epss 0.01

    Improper authentication in OpenBlue Enterprise Manager Data Collector versions prior to 3.2.5.75 allow access to an unauthorized user under certain circumstances.

  • CVE-2021-36206CriOct 28, 2022
    risk 0.65cvss 10.0epss 0.00

    All versions of CEVAS prior to 1.01.46 do not sufficiently validate user-controllable input and could allow a user to bypass authentication and retrieve data with specially crafted SQL queries.

  • CVE-2020-9045CriMay 21, 2020
    risk 0.64cvss 9.9epss 0.01

    During installation or upgrade to Software House C•CURE 9000 v2.70 and American Dynamics victor Video Management System v5.2, the credentials of the user used to perform the installation or upgrade are logged in a file. The install log file persists after the installation.

  • CVE-2019-7589CriMar 10, 2020
    risk 0.64cvss 9.8epss 0.02

    A vulnerability with the SmartService API Service option exists whereby an unauthorized user could potentially exploit this to upload malicious code to the server that could be executed at system level privileges. This affects Johnson Controls' Kantech EntraPass Corporate…

  • CVE-2025-26385CriJan 30, 2026
    risk 0.62cvss epss 0.01

    Johnson Controls Metasys component listed below have Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability . Successful exploitation of this vulnerability could allow remote SQL execution This issue affects  * Metasys:…

  • CVE-2025-26382CriApr 24, 2025
    risk 0.61cvss epss 0.00

    Under certain circumstances the iSTAR Configuration Utility (ICU) tool could have a buffer overflow issue

  • CVE-2024-32752CriJun 6, 2024
    risk 0.59cvss 9.1epss 0.01

    The iSTAR door controllers running firmware prior to version 6.6.B, does not support authenticated communications with ICU, which may allow an attacker to gain unauthorized access

  • CVE-2022-21937HigJun 15, 2022
    risk 0.57cvss 8.7epss 0.01

    Under certain circumstances, a vulnerability in Metasys ADS/ADX/OAS 10 versions prior to 10.1.5 and Metasys ADS/ADX/OAS 11 versions prior to 11.0.2 could allow a user to inject malicious code into the web interface.

  • CVE-2021-36207HigApr 29, 2022
    risk 0.57cvss 8.8epss 0.01

    Under certain circumstances improper privilege management in Metasys ADS/ADX/OAS servers versions 10 and 11 could allow an authenticated user to elevate their privileges to administrator.

  • CVE-2021-27660HigJul 1, 2021
    risk 0.57cvss 8.8epss 0.02

    An insecure client auto update feature in C-CURE 9000 can allow remote execution of lower privileged Windows programs.

  • CVE-2021-27657HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Successful exploitation of this vulnerability could give an authenticated Metasys user an unintended level of access to the server file system, allowing them to access or modify system files by sending specifically crafted web messages to the Metasys system. This issue affects:…

  • CVE-2020-9046HigMay 26, 2020
    risk 0.57cvss 8.8epss 0.00

    A vulnerability in all versions of Kantech EntraPass Editions could potentially allow an authorized low-privileged user to gain full system-level privileges by replacing critical files with specifically crafted files.

  • CVE-2021-27662HigSep 15, 2021
    risk 0.56cvss 8.6epss 0.01

    The KT-1 door controller is susceptible to replay or man-in-the-middle attacks where an attacker can record and replay TCP packets. This issue affects Johnson Controls KT-1 all versions up to and including 3.01

  • CVE-2021-36202HigApr 7, 2022
    risk 0.55cvss 8.4epss 0.01

    Server-Side Request Forgery (SSRF) vulnerability in Johnson Controls Metasys could allow an authenticated attacker to inject malicious code into the MUI PDF export feature. This issue affects: Johnson Controls Metasys All 10 versions versions prior to 10.1.5; All 11 versions…

  • CVE-2023-3548HigJul 25, 2023
    risk 0.54cvss 8.3epss 0.00

    An unauthorized user could gain account access to IQ Wifi 6 versions prior to 2.0.2 by conducting a brute force authentication attack.

  • CVE-2023-0954HigJun 8, 2023
    risk 0.54cvss 8.3epss 0.01

    A debug feature in Sensormatic Electronics Illustra Pro Gen 4 Dome and PTZ cameras allows a user to compromise credentials after a long period of sustained attack.

  • CVE-2022-21936HigOct 7, 2022
    risk 0.53cvss 8.1epss 0.00

    On Metasys ADX Server version 12.0 running MVE, an Active Directory user could execute validated actions without providing a valid password when using MVE SMP UI.

  • CVE-2022-21938HigJun 15, 2022
    risk 0.53cvss 8.1epss 0.00

    Under certain circumstances, a vulnerability in Metasys ADS/ADX/OAS 10 versions prior to 10.1.5 and Metasys ADS/ADX/OAS 11 versions prior to 11.0.2 could allow a user to inject malicious code into the MUI Graphics web interface.

  • CVE-2021-36205HigApr 15, 2022
    risk 0.53cvss 8.1epss 0.01

    Under certain circumstances the session token is not cleared on logout.

  • CVE-2021-27663HigAug 30, 2021
    risk 0.53cvss 8.2epss 0.02

    A vulnerability in versions 10.1 through 10.5 of Johnson Controls CEM Systems AC2000 allows a remote attacker to access to the system without adequate authorization. This issue affects: Johnson Controls CEM Systems AC2000 10.1; 10.2; 10.3; 10.4; 10.5.