Skip to main content

F4 Snc Firmware

2 CVEs product

Monthly

CVE-2023-4486 HIGH This Week

Under certain circumstances, invalid authentication credentials could be sent to the login endpoint of Johnson Controls Metasys NAE55, SNE, and SNC engines prior to versions 11.0.6 and 12.0.4 and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Nae55 Firmware Sne22000 Firmware Sne11000 Firmware Sne10500 Firmware +6
NVD
CVSS 3.1
7.5
EPSS
0.8%
CVE-2021-27661 HIGH This Week

Successful exploitation of this vulnerability could give an authenticated Facility Explorer SNC Series Supervisory Controller (F4-SNC) user an unintended level of access to the controller’s file. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation F4 Snc Firmware
NVD
CVSS 3.1
8.8
EPSS
0.8%
EPSS 1% CVSS 7.5
HIGH This Week

Under certain circumstances, invalid authentication credentials could be sent to the login endpoint of Johnson Controls Metasys NAE55, SNE, and SNC engines prior to versions 11.0.6 and 12.0.4 and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Nae55 Firmware Sne22000 Firmware +8
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Successful exploitation of this vulnerability could give an authenticated Facility Explorer SNC Series Supervisory Controller (F4-SNC) user an unintended level of access to the controller’s file. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation F4 Snc Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy