CVE-2023-4486 - Vulnerability Details

Under certain circumstances, invalid authentication credentials could be sent to the login endpoint of Johnson Controls Metasys NAE55, SNE, and SNC engines prior to

versions 11.0.6 and 12.0.4

and Facility Explorer F4-SNC engines prior to versions 11.0.6 and 12.0.4 to cause denial-of-service.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00171.

Exploitation none

Automatable yes

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Johnson Controls

Metasys NAE55/SNE/SNC

unaffected

Version	Status	Constraints
`12.0`	affected	< 12.0.4
`11.0`	affected	< 11.0.6

Johnson Controls

Facility Explorer F4-SNC

unaffected

Version	Status	Constraints
`12.0`	affected	< 12.0.4
`11.0`	affected	< 11.0.6

Configuration 1 [-]

AND

cpe:2.3:o:johnsoncontrols:nae55_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:nae55:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:johnsoncontrols:sne22000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:sne22000:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:johnsoncontrols:sne11000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:sne11000:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:johnsoncontrols:sne10500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:sne10500:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:johnsoncontrols:sne110l0_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:sne110l0:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:johnsoncontrols:snc25150-0_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:snc25150-0:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:johnsoncontrols:snc25150-04_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:snc25150-04:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:johnsoncontrols:snc16120-0_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:snc16120-0:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:johnsoncontrols:snc16120-04_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:snc16120-04:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

OR	cpe:2.3:o:johnsoncontrols:f4-snc_firmware::::::::
	cpe:2.3:o:johnsoncontrols:f4-snc_firmware::::::::

cpe:2.3:h:johnsoncontrols:f4-snc:-:*:*:*:*:*:*:*

No data.

Project Subscriptions

Vendors	Products
Johnsoncontrols Subscribe	F4-snc Subscribe F4-snc Firmware Subscribe Nae55 Subscribe Nae55 Firmware Subscribe Snc16120-0 Subscribe Snc16120-04 Subscribe Snc16120-04 Firmware Subscribe Snc16120-0 Firmware Subscribe Snc25150-0 Subscribe Snc25150-04 Subscribe Snc25150-04 Firmware Subscribe Snc25150-0 Firmware Subscribe Sne10500 Subscribe Sne10500 Firmware Subscribe Sne11000 Subscribe Sne11000 Firmware Subscribe Sne110l0 Subscribe Sne110l0 Firmware Subscribe Sne22000 Subscribe Sne22000 Firmware Subscribe

Advisories

Source	ID	Title
EUVD	EUVD-2023-54341	Under certain circumstances, invalid authentication credentials could be sent to the login endpoint of Johnson Controls Metasys NAE55, SNE, and SNC engines prior to versions 11.0.6 and 12.0.4 and Facility Explorer F4-SNC engines prior to versions 11.0.6 and 12.0.4 to cause denial-of-service.

Fixes

Solution

Update Metasys NAE55, SNE, and SNC engines to version 12.0.4.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://www.cisa.gov/news-events/ics-advisories/icsa-23-341-03
https://www.johnsoncontrols.com/cyber-solutions/security-advisories

History

Wed, 28 May 2025 14:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: jci

Published: 2023-12-07T19:55:39.265Z

Updated: 2025-05-28T13:52:00.866Z

Reserved: 2023-08-22T19:40:01.192Z

Link: CVE-2023-4486

Vulnrichment

Updated: 2024-08-02T07:31:06.240Z

NVD

Status : Modified

Published: 2023-12-07T20:15:38.530

Modified: 2024-11-21T08:35:15.983

Link: CVE-2023-4486

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object