Known vulnerabilities in Johnson Controls Metasys System Configuration Tool (SCT)

Vendor: Johnson Controls

Website: https://www.johnsoncontrols.com/

Total Security Bulletins: 3

Security bulletins (3)

Secuity bulletin	Severity	Status	Published
SB2023021019: Multiple vulnerabilities in Johnson Controls System Configuration Tool (SCT)	Low	Patched	10.02.2023
SB2022042203: Server-Side Request Forgery (SSRF) in Johnson Controls Metasys System Configuration Tool (SCT) and System Configuration Tool Pro (SCT Pro)	Medium	Patched	22.04.2022
SB2020031122: Denial of service in Johnson Controls Metasys	High	Not patched	11.03.2020