Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-27092

Malicious code in bioql PyPI...

8.1CVSS7.1AI score0.00214EPSS
Exploits0References2
CNVD
CNVDadded 2022/10/11 12:0 a.m.15 views

Johnson Controls Metasys ADX Server Licensing Issue Vulnerability

Johnson Controls Metasys ADX Server is a data server from Johnson Controls, Inc. An authorization issue vulnerability exists in Johnson Controls Metasys ADX Server version 12.0, which stems from improper access controls in the application and could be exploited by an attacker to cause an AD user ...

8.1CVSS2.9AI score0.00214EPSS
Exploits0References1
Prion
Prionadded 2022/10/07 6:15 p.m.18 views

Code injection

On Metasys ADX Server version 12.0 running MVE, an Active Directory user could execute validated actions without providing a valid password when using MVE SMP UI...

4CVSS6.6AI score0.00214EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/10/07 5:39 p.m.65 views

CVE-2022-21936

CVE-2022-21936 affects Johnson Controls Metasys ADX Server version 12.0 running MVE. The vulnerability is improper authentication, enabling an Active Directory user to execute validated actions without a valid password via the MVE SMP UI. Public impact details indicate remote exploitation with lo...

8.1CVSS7AI score0.00214EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2022/10/07 12:0 a.m.3 views

PT-2022-15192 · Johnson Controls · Metasys Adx Server

Name of the Vulnerable Software and Affected Versions: Metasys ADX Server version 12.0 Description: The issue allows an Active Directory user to execute validated actions without providing a valid password when using MVE SMP UI. Recommendations: For Metasys ADX Server version 12.0, consider...

8.1CVSS7AI score0.00214EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2022/10/04 6:52 p.m.4 views

CVE-2022-21936

On Metasys ADX Server version 12.0 running MVE, an Active Directory user could execute validated actions without providing a valid password when using MVE SMP UI...

8.1CVSS6.7AI score0.00214EPSS
Exploits0References3
ICS
ICSadded 2022/10/04 12:0 a.m.35 views

Johnson Controls Metasys ADX Server

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Johnson Controls Inc. Equipment: Metasys ADX Extended Application and Data Server Server running MVE Metasys for Validated Environments Vulnerability: Improper Authentication 2. RISK EVALUATION...

8.1CVSS7.3AI score0.00214EPSS
Exploits0References5
CNNVD
CNNVDadded 2022/10/04 12:0 a.m.1 views

Johnson Controls Metasys ADX 授权问题漏洞

Johnson Controls Metasys ADX Server is a data server from Johnson Controls, Inc. An authorization issue vulnerability exists in Johnson Controls Metasys ADX Server version 12.0, which stems from improper access controls in the application and could be exploited by an attacker to cause an AD user ...

8.1CVSS6.7AI score0.00214EPSS
Exploits0References4
CNNVD
CNNVDadded 2021/07/21 12:0 a.m.3 views

Sage Group Sage X3 信息泄露漏洞

Sage Group Sage X3 is an application from Sage Group, Inc. an enterprise resource planning product developed for mature organizations. An information disclosure vulnerability exists in Sage X3 where the Metasploit module exploits an authentication bypass vulnerability in the Sage X3 AdxSrv...

5.3CVSS8AI score0.55955EPSS
Exploits6References5
Rows per page
Query Builder