Lucene search
JciCVELIST:CVE-2021-36198HistoryDec 06, 2021 - 4:54 p.m.
CVE-2021-36198 Entrapass
2021-12-0616:54:42
CWE-200
jci
www.cve.org
2
vulnerability
unauthorized access
sensitive data
entrapass
CVSS3
8.3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
AI Score
8.3
Confidence
High
EPSS
0.002
Percentile
54.7%
Successful exploitation of this vulnerability could allow an unauthorized user to access sensitive data.
CNA Affected
[
{
"product": "Entrapass",
"vendor": "Johnson Controls",
"versions": [
{
"lessThan": "8.40",
"status": "affected",
"version": "all versions prior to 8.40",
"versionType": "custom"
}
]
}
]Related
cnvd
cnvd
Johnson Controls exacqVision Server Information Disclosure Vulnerability
2021-12-07 00:00:00
prion
prion
Design/Logic Flaw
2021-12-06 17:15:00
ics
ics
Johnson Controls Entrapass
2021-12-04 12:00:00
nvd
nvd
CVE-2021-36198
2021-12-06 17:15:07
cve
cve
CVE-2021-36198
2021-12-06 17:15:07
CVSS3
8.3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
AI Score
8.3
Confidence
High
EPSS
0.002
Percentile
54.7%
Related for CVELIST:CVE-2021-36198