Johnson Controls System Configuration Tool (SCT)
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely Vendor: Johnson Controls Equipment: System Configuration Tool Vulnerabilities: Sensitive Cookie Without ‘HttpOnly’ Flag, Sensitive Cookie in HTTPS Session Without ‘Secure’ Attribute 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to access cookies and take over the…
Hot Topics
Categories
Critical vulnerabiliities (81)
cyber crime (1)
Cyber Security (63)
Data breach (2)
DER (11)
Exploit (28)
Hacks (78)
ICS (506)
Industrial IoT (IIoT) (29)
IoT Security (74)
Market (49)
News (1204)
Recommendations (59)
Remediation (7)
Reports (12)
Security Patches (12)
Standards (3)
Tools (6)
Uncategorized (29)
Vulnerabilities (1077)
White Papers (32)
Stay connected