[Control systems] Johnson Controls security advisory (AV23-744)

From: Canadian Centre for Cyber Security

Serial number: AV23-744
Date: December 7, 2023

On December 7, 2023, CISA published an ICS advisory to address a vulnerability in the following products:

  • Facility Explorer F4-SNC – versions prior to 11.0.6
  • Facility Explorer F4-SNC – versions prior to 12.0.4
  • Metasys NAE55 engines – versions prior to 12.0.4
  • Metasys SNC engines – versions prior to 12.0.4
  • Metasys SNE engines – versions prior to 12.0.4

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: