This content is viewable by Everyone
Critical Vulnerabilities Affecting Johnson Control Metasys ADS/ADX/OAS Servers
Johnson Control released security updates to address Critical vulnerabilities affecting Metasys ADS/ADX/OAS Servers. Successful exploitation of this vulnerability could allow a remote attacker to use a session token that has not been cleared upon log out of an authenticated user.
For a complete description of the vulnerabilities and effected systems, visit ICS Advisory (ICSA-22-104-02) Johnson Controls Metasys.