Johnsoncontrols C-cure 9000 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Johnsoncontrols C-cure 9000 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-9045 — CVSS 9.9 (critical): During installation or upgrade to Software House C•CURE 9000 v2.70 and American Dynamics victor Video Management System v5.2, the…
CVE-2021-27660 — CVSS 8.8 (high): An insecure client auto update feature in C-CURE 9000 can allow remote execution of lower privileged Windows programs.
CVE-2021-36201 — CVSS 4.3 (medium): Under certain circumstances a CCURE Portal user could enumerate user accounts in CCURE 9000 version 2.90 and prior versions.