CVE-2018-10624

CVE-2018-10624 affects Johnson Controls Metasys System (versions 8.0 and earlier) and BCPro (BCM) before 3.0.2. Root cause: improper error handling in HTTP-based communications that can expose technical information via error messages. Impact: information exposure about the server; CVSSv3 base sco...