CVE-2020-9044

🗓️ 10 Mar 2020 19:28:30Reported by jciType

XXE vulnerability in Johnson Controls' Metasys product Web Services allows DoS attacks or file harvesting

Reporter	Title	Published	Views	Family All 10
CNVD	Johnson Controls Metasys XML External Entity Injection Vulnerability	11 Mar 202000:00	–	cnvd
Cvelist	CVE-2020-9044 Metasys Improper Restriction of XML External Entity Reference	10 Mar 202019:28	–	cvelist
EUVD	EUVD-2020-29873	7 Oct 202500:30	–	euvd
ICS	Johnson Controls Metasys	10 Mar 202000:00	–	ics
NVD	CVE-2020-9044	10 Mar 202020:15	–	nvd
OSV	CVE-2020-9044	10 Mar 202020:15	–	osv
Tenable Nessus	Johnsoncontrols Metasys Improper Restriction of XML External Entity Reference	10 Aug 202100:00	–	nessus
Tenable Nessus	Johnson Controls Metasys Improper Restriction of XML External Entity Reference (CVE-2020-9044)	7 Feb 202200:00	–	nessus
Prion	Xxe	10 Mar 202020:15	–	prion
RedhatCVE	CVE-2020-9044	5 Feb 202515:05	–	redhatcve

NVD

Node

johnsoncontrols metasys_application_and_data_serverRange≤10.1

johnsoncontrols metasys_application_and_data_serverRange≤10.1lite

johnsoncontrols metasys_extended_application_and_data_serverRange≤10.1

johnsoncontrols metasys_lonworks_control_serverRange≤10.1

johnsoncontrols metasys_open_application_serverMatch10.1

johnsoncontrols metasys_open_data_serverRange≤10.1

johnsoncontrols metasys_system_configuration_toolRange≤13.2

Node

johnsoncontrols nae55_firmwareMatch9.0.1

johnsoncontrols nae55_firmwareMatch9.0.2

johnsoncontrols nae55_firmwareMatch9.0.3

johnsoncontrols nae55_firmwareMatch9.0.5

johnsoncontrols nae55_firmwareMatch9.0.6

AND

johnsoncontrols nae55Match-

Node

johnsoncontrols nie55_firmwareMatch9.0.1

johnsoncontrols nie55_firmwareMatch9.0.2

johnsoncontrols nie55_firmwareMatch9.0.3

johnsoncontrols nie55_firmwareMatch9.0.5

johnsoncontrols nie55_firmwareMatch9.0.6

AND

johnsoncontrols nie55Match-

Node

johnsoncontrols nie59_firmwareMatch9.0.1

johnsoncontrols nie59_firmwareMatch9.0.2

johnsoncontrols nie59_firmwareMatch9.0.3

johnsoncontrols nie59_firmwareMatch9.0.5

johnsoncontrols nie59_firmwareMatch9.0.6

AND

johnsoncontrols nie59Match-

Node

johnsoncontrols nae85_firmwareRange≤10.1

AND

johnsoncontrols nae85Match-

Node

johnsoncontrols nie85_firmwareRange≤10.1

AND

johnsoncontrols nie85Match-

Node

johnsoncontrols nae55_firmwareMatch8.1

AND

johnsoncontrols nae55Match-

Node

johnsoncontrols ul_864_uukl_firmwareMatch8.1

AND

johnsoncontrols ul_864_uuklMatch-

Node

johnsoncontrols ord-c100-13_uuklc_firmwareMatch8.1

AND

johnsoncontrols ord-c100-13_uuklcMatch-

[
  {
    "product": "Metasys Application and Data Server (ADS, ADS-Lite)",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "versions 10.1 and prior"
      }
    ]
  },
  {
    "product": "Metasys Extended Application and Data Server (ADX)",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "versions 10.1 and prior"
      }
    ]
  },
  {
    "product": "Metasys Open Data Server (ODS)",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "versions 10.1 and prior"
      }
    ]
  },
  {
    "product": "Metasys Open Application Server (OAS)",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "version 10.1"
      }
    ]
  },
  {
    "product": "Metasys Network Automation Engine (NAE55 only)",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "versions 9.0.1"
      },
      {
        "status": "affected",
        "version": "9.0.2"
      },
      {
        "status": "affected",
        "version": "9.0.3"
      },
      {
        "status": "affected",
        "version": "9.0.5"
      },
      {
        "status": "affected",
        "version": "9.0.6"
      }
    ]
  },
  {
    "product": "Metasys Network Integration Engine (NIE55/NIE59)",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "versions 9.0.1"
      },
      {
        "status": "affected",
        "version": "9.0.2"
      },
      {
        "status": "affected",
        "version": "9.0.3"
      },
      {
        "status": "affected",
        "version": "9.0.5"
      },
      {
        "status": "affected",
        "version": "9.0.6"
      }
    ]
  },
  {
    "product": "Metasys NAE85 and NIE85",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "versions 10.1 and prior"
      }
    ]
  },
  {
    "product": "Metasys LonWorks Control Server (LCS)",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "versions 10.1 and prior"
      }
    ]
  },
  {
    "product": "Metasys System Configuration Tool (SCT)",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "versions 13.2 and prior"
      }
    ]
  },
  {
    "product": "Metasys Smoke Control Network Automation Engine (NAE55, UL 864 UUKL/ORD-C100-13 UUKLC 10th Edition Listed)",
    "vendor": "Johnson Controls",
    "versions": [
      {
        "status": "affected",
        "version": "version 8.1"
      }
    ]
  }
]

Source	Link
us-cert	www.us-cert.gov/ics/advisories/icsa-20-070-05
johnsoncontrols	www.johnsoncontrols.com/cyber-solutions/security-advisories

21 Nov 2024 05:39Current

8.4High risk

Vulners AI Score8.4

CVSS 26.4

CVSS 3.17.5 - 9.1

EPSS0.00269

CWE-611