CVE-2024-32862: exacqVision CORS

Q: What is the severity of CVE-2024-32862?

CVE-2024-32862 has been classified as a medium severity vulnerability.

Q: What impact does CVE-2024-32862 have on ExacqVision Web Services?

CVE-2024-32862 allows potential attackers to exploit insufficient protection against untrusted domains.

Q: How do I fix CVE-2024-32862?

To mitigate CVE-2024-32862, users should update ExacqVision Web Services to the latest version beyond 24.03.

Q: Is CVE-2024-32862 present in all versions of ExacqVision Web Services?

CVE-2024-32862 affects ExacqVision Web Services versions up to and including 24.03.

Q: What should I do if I'm using a vulnerable version of ExacqVision Web Services due to CVE-2024-32862?

If you are using a vulnerable version, you should immediately plan to update your software to a secure version.

Published Aug 1, 2024

Updated

Under certain circumstances the ExacqVision Web Services does not provide sufficient protection from untrusted domains.

Affected Software

1 affected component

Johnsoncontrols Exacqvision Web Service<=24.03

Remediation

Information

Update exacqVision Web Service to version 24.06

Event History

Aug 1, 2024

CVE Published

via MITRE·09:57 PM

Data Sourced

via MITRE·09:57 PM

RemedyDescriptionSeverityWeakness

Data Sourced

via NVD·10:15 PM

DescriptionSeverityWeakness

Frequently Asked Questions

What is the severity of CVE-2024-32862?

CVE-2024-32862 has been classified as a medium severity vulnerability.

What impact does CVE-2024-32862 have on ExacqVision Web Services?

CVE-2024-32862 allows potential attackers to exploit insufficient protection against untrusted domains.

How do I fix CVE-2024-32862?