A vulnerability in all versions of Kantech EntraPass Editions could potentially allow an authorized low-privileged user to gain full system-level privileges by replacing critical files with specifically crafted files.
References
Link | Resource |
---|---|
https://www.johnsoncontrols.com/cyber-solutions/security-advisories | Vendor Advisory |
https://www.us-cert.gov/ics/advisories/ICSA-20-147-02 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: jci
Published: 2020-05-26T20:05:08
Updated: 2020-05-26T20:05:08
Reserved: 2020-02-18T00:00:00
Link: CVE-2020-9046
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-05-26T21:15:11.173
Modified: 2020-06-03T15:12:33.160
Link: CVE-2020-9046
JSON object: View
Redhat Information
No data.