Computrols Building Automation Software 19.0.0 Remote Code Execution Vulnerability


Computrols CBAS 18.0.0 has hard-coded encryption keys. Computrols is prone to a remote code-execution vulnerability.


The information has been provided by Computrols
The original article can be found at:


This allows a remote attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition. 

Vulnerable Systems:

  • Computrols Building Automation Software 19.0.0

CVE Information:


Disclosure Timeline:
Publish Date:05/23/2019

Categories: News