CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Johnsoncontrols: >> Snc25150-04 Security Vulnerabilities

CVE-2023-4486

Under certain circumstances, invalid authentication credentials could be sent to the login endpoint of Johnson Controls Metasys NAE55, SNE, and SNC engines prior to versions 11.0.6 and 12.0.4 and Facility Explorer F4-SNC engines prior to versions 11.0.6 and 12.0.4 to cause denial-of-service.

CVSS Score

7.5

EPSS Score

0.001

Published

2023-12-07

Page 1

Vulnerabilities

Vulnerable Software

Johnsoncontrols: >> Snc25150-04 Security Vulnerabilities

Products

Pricing

Contact Us