[Control systems] Johnson Controls security advisory (AV22-410)

Number: AV22-410
Date: 22 July 2022

On 21 July 2022 ICS-CERT published an ICS Advisory to highlight a vulnerability in the following product:

  • Johnson Controls Metasys ADS, ADX, OAS with MUI – versions 10 and 11

Exploitation of this vulnerability could result in information disclosure.

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

Date modified: