KLA10512
Multiple vulnerabilities in Johnson Controls Metasys
Updated: 06/01/2019
Detect date
?
03/29/2015
Severity
?
Critical
Description

An unspecified vulnerabilities were found in Johnson Controls Metasys. By exploiting this vulnerability malicious users can execute arbitrary code or obtain sensitive information. These vulnerabilities can be exploited remotely via a speciaaly designed POST request or shell script.

Affected products

Johnson Controls Metasys versions from 4.1 to 6.5

Solution

Update products, which is using these versions of component

Impacts
?
ACE 
[?]

OSI 
[?]
CVE-IDS
?
CVE-2014-542810.0Critical
CVE-2014-54275.0Critical