Johnson Controls · Johnson Controls Kt-1 · CVE-2021-27662
**Name of the Vulnerable Software and Affected Versions**
Johnson Controls KT-1 versions up to and including 3.01
**Description**
The issue allows an attacker to perform replay or man-in-the-middle attacks by recording and replaying TCP packets.
**Recommendations**
For Johnson Controls KT-1 versions up to and including 3.01, at the moment, there is no information about a newer version that contains a fix for this vulnerability.