CVE-2024-32862 | Johnson Controls exacqVision Web Service 22.12.1.0 cross-domain policy (icsa-24-214-02)

Inserito da Angelo Barbosa | Ago 1, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Johnson Controls exacqVision Web Service 22.12.1.0. This issue affects some unknown processing. The manipulation leads to permissive cross-domain policy with untrusted domains.

The identification of this vulnerability is CVE-2024-32862. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32862 | Johnson Controls exacqVision Web Service 22.12.1.0 cross-domain policy (icsa-24-214-02)

Post correlati

CVE-2024-27767 | Unitronics Unistream Unilogic prior 1.35.227 improper authentication

CVE-2023-38318 | OpenNDS up to 10.1.2 Configuration File os command injection

CVE-2024-8007 | Red Hat OpenStack Platform Director TLS cryptographic issues

CVE-2024-41707 | Archer Platform up to 2024.04 Trusted Application Data Store cross site scripting