Johnsoncontrols - C-cure 9000 CVE

Filtered by vendor Johnsoncontrols Subscribe

Filtered by product C-cure 9000

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-36201	1 Johnsoncontrols	2 C-cure 9000, C-cure 9000 Firmware	2023-12-10	N/A	5.3 MEDIUM
Under certain circumstances a CCURE Portal user could enumerate user accounts in CCURE 9000 version 2.90 and prior versions.
CVE-2021-27660	1 Johnsoncontrols	2 C-cure 9000, C-cure 9000 Firmware	2023-12-10	6.5 MEDIUM	8.8 HIGH
An insecure client auto update feature in C-CURE 9000 can allow remote execution of lower privileged Windows programs.

Vulnerabilities (CVE)