CVE-2021-36204

Published: 2023-01-13T21:15Z

Last Modified: 2024-11-21T06:13Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Under some circumstances an Insufficiently Protected Credentials vulnerability in Johnson Controls Metasys ADS/ADX/OAS 10 versions prior to 10.1.6 and 11 versions prior to 11.0.3 allows API calls to expose credentials in plain text. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt