Johnson Controls Metasys vulnerabilities
4 known vulnerabilities affecting johnson_controls/metasys.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH2
Vulnerabilities
Page 1 of 1
CVE-2025-26385P2CRITICALCVSS 9.5vApplication and Data Server (ADS) installed with SQL Express deployed as part of the Metasys 14.1 and prior installationvExtended Application and Data Server (ADX) installed with SQL Express deployed as part of the Metasys 14.1 installation+3 more2026-01-30
CVE-2025-26385 [CRITICAL] CWE-77 CVE-2025-26385: Johnson Controls Metasys component listed below have Improper Neutralization of Special Elements us
Johnson Controls Metasys component listed below have Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability . Successful exploitation of this vulnerability could allow remote SQL execution This issue affects
* Metasys: Application and Data Server (ADS) installed with SQL Express deployed as part of the Meta
nvd
CVE-2021-36202P3HIGHCVSS 8.8≥ All 10 versions, < 10.1.5≥ All 11 versions, < 11.0.22022-04-07
CVE-2021-36202 [HIGH] CWE-918 CVE-2021-36202: Server-Side Request Forgery (SSRF) vulnerability in Johnson Controls Metasys could allow an authenti
Server-Side Request Forgery (SSRF) vulnerability in Johnson Controls Metasys could allow an authenticated attacker to inject malicious code into the MUI PDF export feature. This issue affects: Johnson Controls Metasys All 10 versions versions prior to 10.1.5; All 11 versions versions prior to 11.0.2.
nvd
CVE-2021-27657P3HIGHCVSS 8.8≥ 11.0, ≤ 11.02021-06-04
CVE-2021-27657 [HIGH] CWE-269 CVE-2021-27657: Successful exploitation of this vulnerability could give an authenticated Metasys user an unintended
Successful exploitation of this vulnerability could give an authenticated Metasys user an unintended level of access to the server file system, allowing them to access or modify system files by sending specifically crafted web messages to the Metasys system. This issue affects: Johnson Controls Metasys version 11.0 and prior versions.
nvd
CVE-2021-36205P3CRITICALCVSS 9.8≥ All 10 versions, < 10.1.5≥ All 11 versions, < 11.0.22022-04-15
CVE-2021-36205 [CRITICAL] CWE-459 CVE-2021-36205: Under certain circumstances the session token is not cleared on logout.
Under certain circumstances the session token is not cleared on logout.
nvd