CVE-2021-27664
published 2021-10-11CVE-2021-27664: Under certain configurations an unauthenticated remote user could be given access to credentials stored in the exacqVision Server.
PriorityP268critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.50%
71.1th percentile
Under certain configurations an unauthenticated remote user could be given access to credentials stored in the exacqVision Server.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| johnson_controls | exacqvision_web_service | 21.06.11.0 – 21.06.11.0 | — |
| johnsoncontrols | exacqvision_web_service | <= 20.06.11.0 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Target affected product: exacqVision Web Service Version 21.06.11.0 or older is vulnerable to unauthenticated remote credential access ↗
- →Vulnerability class is Improper Privilege Management (CWE-269) allowing unauthenticated remote access to stored credentials — monitor for unauthenticated requests to exacqVision Web Service endpoints that return or expose credential data ↗
- →No known public exploits exist at time of advisory — prioritize detection of anomalous unauthenticated access patterns against exacqVision Web Service ↗
- ·Vulnerability is only triggered under certain configurations — not all deployments are exposed ↗
- ·CVSS v3 score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) reflects network-exploitable, no-auth, no-interaction attack surface — treat any internet-exposed exacqVision Web Service as critically at risk ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mghh-6h8j-qq5m: Under certain configurations an unauthenticated remote user could be given access to credentials stored in the exacqVision Server
ghsa_unreviewed·2022-05-24
CVE-2021-27664 [CRITICAL] CWE-269 GHSA-mghh-6h8j-qq5m: Under certain configurations an unauthenticated remote user could be given access to credentials stored in the exacqVision Server
Under certain configurations an unauthenticated remote user could be given access to credentials stored in the exacqVision Server.
CISA ICS
Johnson Controls exacqVision Server Bundle
cisa_ics·2021-10-07·CVSS 9.8
[CRITICAL] Johnson Controls exacqVision Server Bundle
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Johnson Controls exacqVision Server Bundle
Last RevisedOctober 07, 2021
Alert CodeICSA-21-280-01
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Exacq Technologies, a subsidiary of Johnson Controls, Inc.
- Equipment: exacqVision Server Bundle
- Vulnerability: Improper Privilege Management=
## 2. RISK EVALUATION
Successful exploitation of this vulnerability could allow an unauthenticated remote user to be given access to credentials stored in the exacqVision Server.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
T
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2021-10-11
Published