Medium
An attacker with authorized access to a low-privileged user account could exploit this vulnerability to gain full system level privileges.
Improper Access Control
Johnson Controls
Johnson Controls recommends users upgrade all Kantech EntraPass Editions to Version 8.23