Security Advisory

CVE-2021-27657

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-04 14:07:39

Last updated 2024-09-17 00:51:44

Assigner jci

State PUBLISHED

Description

Successful exploitation of this vulnerability could give an authenticated Metasys user an unintended level of access to the server file system, allowing them to access or modify system files by sending specifically crafted web messages to the Metasys system. This issue affects: Johnson Controls Metasys version 11.0 and prior versions.

← Browse all CVEs View on cve.org ↗