Unrated severityNVD Advisory· Published Jul 22, 2022· Updated Sep 16, 2024
Metasys ADS/ADX/OAS with MUI
CVE-2021-36200
Description
Under certain circumstances an unauthenticated user could access the the web API for Metasys ADS/ADX/OAS 10 versions prior to 10.1.6 and 11 versions prior to 11.0.2 and enumerate users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<10.1.6 (v10), <11.0.2 (v11)+ 1 more
- (no CPE)range: <10.1.6 (v10), <11.0.2 (v11)
- (no CPE)range: All 10 versions
Patches
Vulnerability mechanics
References
2- www.cisa.gov/uscert/ics/advisories/icsa-22-202-02mitrethird-party-advisoryx_refsource_CERT
- www.johnsoncontrols.com/cyber-solutions/security-advisoriesmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.