CVE-2023-4486 - Vulnerability Details

Description

Under certain circumstances, invalid authentication credentials could be sent to the login endpoint of Johnson Controls Metasys NAE55, SNE, and SNC engines prior to

versions 11.0.6 and 12.0.4

and Facility Explorer F4-SNC engines prior to versions 11.0.6 and 12.0.4 to cause denial-of-service.

Published: 2023-12-07

Score: 7.5 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Johnson Controls

Metasys NAE55/SNE/SNC

unaffected

Version	Status	Constraints
`12.0`	affected	< 12.0.4
`11.0`	affected	< 11.0.6

Johnson Controls

Facility Explorer F4-SNC

unaffected

Version	Status	Constraints
`12.0`	affected	< 12.0.4
`11.0`	affected	< 11.0.6

Configuration 1 [-]

AND

cpe:2.3:o:johnsoncontrols:nae55_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:nae55:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:johnsoncontrols:sne22000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:sne22000:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:johnsoncontrols:sne11000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:sne11000:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:johnsoncontrols:sne10500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:sne10500:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:johnsoncontrols:sne110l0_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:sne110l0:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:johnsoncontrols:snc25150-0_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:snc25150-0:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:johnsoncontrols:snc25150-04_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:snc25150-04:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:johnsoncontrols:snc16120-0_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:snc16120-0:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:johnsoncontrols:snc16120-04_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:johnsoncontrols:snc16120-04:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

OR	cpe:2.3:o:johnsoncontrols:f4-snc_firmware::::::::
	cpe:2.3:o:johnsoncontrols:f4-snc_firmware::::::::

cpe:2.3:h:johnsoncontrols:f4-snc:-:*:*:*:*:*:*:*

No data.

No data available yet.

Remediation

Vendor Solution

Update Metasys NAE55, SNE, and SNC engines to version 12.0.4.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2023-54341	Under certain circumstances, invalid authentication credentials could be sent to the login endpoint of Johnson Controls Metasys NAE55, SNE, and SNC engines prior to versions 11.0.6 and 12.0.4 and Facility Explorer F4-SNC engines prior to versions 11.0.6 and 12.0.4 to cause denial-of-service.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00171.

Exploitation none

Automatable yes

Technical Impact partial

References

Link	Providers
https://www.cisa.gov/news-events/ics-advisories/icsa-23-341-03
https://www.johnsoncontrols.com/cyber-solutions/security-advisories

History

Wed, 28 May 2025 14:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Subscriptions

Johnsoncontrols F4-snc F4-snc Firmware Nae55 Nae55 Firmware Snc16120-0 Snc16120-04 Snc16120-04 Firmware Snc16120-0 Firmware Snc25150-0 Snc25150-04 Snc25150-04 Firmware Snc25150-0 Firmware Sne10500 Sne10500 Firmware Sne11000 Sne11000 Firmware Sne110l0 Sne110l0 Firmware Sne22000 Sne22000 Firmware

MITRE

Status: PUBLISHED

Assigner: jci

Published: 2023-12-07T19:55:39.265Z

Updated: 2025-05-28T13:52:00.866Z

Reserved: 2023-08-22T19:40:01.192Z

Link: CVE-2023-4486

Vulnrichment

Updated: 2024-08-02T07:31:06.240Z

NVD

Status : Modified

Published: 2023-12-07T20:15:38.530

Modified: 2024-11-21T08:35:15.983

Link: CVE-2023-4486

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object