Filtered by vendor Johnsoncontrols Subscriptions
Filtered by product Cevas Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-36206 1 Johnsoncontrols 1 Cevas 2024-11-21 10 Critical
All versions of CEVAS prior to 1.01.46 do not sufficiently validate user-controllable input and could allow a user to bypass authentication and retrieve data with specially crafted SQL queries.