cbcvebase.

Johnson Controls Metasys vulnerabilities

4 known vulnerabilities affecting johnson_controls/metasys.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH2

Vulnerabilities

Page 1 of 1
CVE-2025-26385P2CRITICALCVSS 9.5vApplication and Data Server (ADS) installed with SQL Express deployed as part of the Metasys 14.1 and prior installationvExtended Application and Data Server (ADX) installed with SQL Express deployed as part of the Metasys 14.1 installation+3 more2026-01-30
CVE-2025-26385 [CRITICAL] CWE-77 CVE-2025-26385: Johnson Controls Metasys component listed below have Improper Neutralization of Special Elements us Johnson Controls Metasys component listed below have Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability . Successful exploitation of this vulnerability could allow remote SQL execution This issue affects * Metasys: Application and Data Server (ADS) installed with SQL Express deployed as part of the Meta
nvd
CVE-2021-36202P3HIGHCVSS 8.8≥ All 10 versions, < 10.1.5≥ All 11 versions, < 11.0.22022-04-07
CVE-2021-36202 [HIGH] CWE-918 CVE-2021-36202: Server-Side Request Forgery (SSRF) vulnerability in Johnson Controls Metasys could allow an authenti Server-Side Request Forgery (SSRF) vulnerability in Johnson Controls Metasys could allow an authenticated attacker to inject malicious code into the MUI PDF export feature. This issue affects: Johnson Controls Metasys All 10 versions versions prior to 10.1.5; All 11 versions versions prior to 11.0.2.
nvd
CVE-2021-27657P3HIGHCVSS 8.8≥ 11.0, ≤ 11.02021-06-04
CVE-2021-27657 [HIGH] CWE-269 CVE-2021-27657: Successful exploitation of this vulnerability could give an authenticated Metasys user an unintended Successful exploitation of this vulnerability could give an authenticated Metasys user an unintended level of access to the server file system, allowing them to access or modify system files by sending specifically crafted web messages to the Metasys system. This issue affects: Johnson Controls Metasys version 11.0 and prior versions.
nvd
CVE-2021-36205P3CRITICALCVSS 9.8≥ All 10 versions, < 10.1.5≥ All 11 versions, < 11.0.22022-04-15
CVE-2021-36205 [CRITICAL] CWE-459 CVE-2021-36205: Under certain circumstances the session token is not cleared on logout. Under certain circumstances the session token is not cleared on logout.
nvd
Johnson Controls Metasys vulnerabilities | cvebase