CVE-2024-32758

HIGH

Johnsoncontrols Exacqvision Client < 24.06 - Weak Encryption

Title source: rule
STIX 2.1

Description

Under certain circumstances the communication between exacqVision Client and exacqVision Server will use insufficient key length and exchange

References (2)

Scores

CVSS v3 7.5
EPSS 0.0012
EPSS Percentile 31.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-326
Status published
Products (2)
johnsoncontrols/exacqvision_client < 24.06
johnsoncontrols/exacqvision_server < 24.06
Published Aug 01, 2024
Tracked Since Feb 18, 2026