CVE-2024-32863 | Johnson Controls exacqVision Web Service up to 24.03 cross-site request forgery (icsa-24-214-03)

Inserito da Angelo Barbosa | Ago 1, 2024 | CVE

A vulnerability has been found in Johnson Controls exacqVision Web Service up to 24.03 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2024-32863. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32863 | Johnson Controls exacqVision Web Service up to 24.03 cross-site request forgery (icsa-24-214-03)

Post correlati

CVE-2024-2962 | Networker Plugin up to 1.1.9 on WordPress authorization

CVE-2024-2296 | 10Web Photo Gallery Plugin up to 1.8.21 on WordPress SVG cross site scripting

CVE-2024-38141 | Microsoft Windows up to Server 2022 23H2 Ancillary Function Driver for WinSock use after free

CVE-2023-37187 | C-Blosc2 up to 2.9.2 zfp/blosc2-zfp.c zfp_acc_decompress null pointer dereference (Issue 520)