CVE-2021-37292
An Access Control vulnerability exists in KevinLAB Inc Building Energy Management System 4ST BEMS 1.0.0 due to an undocumented backdoor acco
CVSS
7.2
High
EPSS
6.7%
p93
KEV
—
Exploit Today
28
0-100
Published: Apr 11, 2022 · Last modified: Jul 5, 2026
6.7%EPSS · 30 days6.7%
2026-06-302026-07-16
An Access Control vulnerability exists in KevinLAB Inc Building Energy Management System 4ST BEMS 1.0.0 due to an undocumented backdoor account. A malicious user can log in using the backdor account with admin highest privileges and obtain system control.
No related CVEs by CWE or product.