Vulnerabilities > Johnsoncontrols > Metasys System > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-08-20 | CVE-2019-7593 | Use of Hard-coded Credentials vulnerability in Johnsoncontrols Metasys System Metasys® ADS/ADX servers and NAE/NIE/NCE engines prior to 9.0 make use of a shared RSA key pair for certain encryption operations involving the Site Management Portal (SMP). | 9.1 |
2019-08-20 | CVE-2019-7594 | Use of Hard-coded Credentials vulnerability in Johnsoncontrols Metasys System Metasys® ADS/ADX servers and NAE/NIE/NCE engines prior to 9.0 make use of a hardcoded RC2 key for certain encryption operations involving the Site Management Portal (SMP). | 9.1 |