Vulnerability in Johnsoncontrols Ac2000
CVE-2026-21661
Uncontrolled Search Path Element vulnerability in JohnsonControls AC2000 on Windows allows Leveraging/Manipulating Configuration File Search Paths. This issue affects AC2000: from 10.6 before release 10, from 11.0 before release 9, from 1…
EPSS: 0.000 (3.3th percentile) — read the EPSS interpretation.
Affected products
- Johnsoncontrols Ac2000 — versions 10.6, 11.0, 12