CVE-2024-32931 | Johnson Controls exacqVision Web Service up to 24.03 get request method with sensitive query strings (icsa-24-214-06)

Posted by Angelo Barbosa | Aug 1, 2024 | CVE

A vulnerability was found in Johnson Controls exacqVision Web Service up to 24.03 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to use of get request method with sensitive query strings.

This vulnerability is handled as CVE-2024-32931. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32931 | Johnson Controls exacqVision Web Service up to 24.03 get request method with sensitive query strings (icsa-24-214-06)

Related Posts

CVE-2023-49567 | Bitdefender Total Security up to 27.0.25.114 HTTPS Scanning certificate validation

CVE-2023-52277 | Royal RoyalTSX up to 6.0.2.0 RTSZ File RAPortCheck.createNWConnection hostname denial of service (ZSL-2023-5788)

CVE-2024-46834 | Linux Kernel up to 6.10.9 ethtool out-of-bounds (101737d8b88d/2899d58462ba)

CVE-2024-0578 | Totolink LR1200GB 9.1.0u.6619_B20230130 /cgi-bin/cstecgi.cgi UploadCustomModule File stack-based overflow