Johnson Controls Metasys

CVSS 6.8 MEDIUM

Risk Summary

Successful exploitation of these vulnerabilities could be leveraged by an attacker to decrypt captured network traffic.

CVE-2019-7593 CVE-2019-7594

Users should upgrade to Version 9.0 or later and configure sites with trusted certificates.
Further ICS security notices and product security guidance are located at the Johnson Controls product security website.
For questions concerning this product, contact Johnson Controls Global Product Security; email: [email protected].

Johnson Controls Inc

Johnson Controls Inc · Metasys system < 9.0

Critical Manufacturing

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.