Johnsoncontrols Openblue Enterprise Manager Data Collector — known CVE vulnerabilities
Every CVE whose affected-product data names Johnsoncontrols Openblue Enterprise Manager Data Collector, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-2024 — CVSS 10.0 (critical): Improper authentication in OpenBlue Enterprise Manager Data Collector versions prior to 3.2.5.75 allow access to an unauthorized user under…
CVE-2023-2025 — CVSS 5.0 (medium): OpenBlue Enterprise Manager Data Collector versions prior to 3.2.5.75 may expose sensitive information to an unauthorized user under…