Critical Infrastructure Sectors: Critical Manufacturing
Under some circumstances an Insufficiently Protected Credentials vulnerability in Johnson Controls Metasys ADS/ADX/OAS 10 versions before 10.1.6 and 11 versions before 11.0.3 allows API calls to expose credentials in plain text.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
johnsoncontrols metasys application and data server |
||
johnsoncontrols metasys extended application and data server |
||
johnsoncontrols metasys open application server |