Johnsoncontrols - Metasys Reporting Engine CVE - CVE Search - CVE Details

Filtered by vendor Johnsoncontrols Subscribe

Filtered by product Metasys Reporting Engine

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-9050	1 Johnsoncontrols	1 Metasys Reporting Engine	2021-02-25	5.0 MEDIUM	7.5 HIGH
Path Traversal vulnerability exists in Metasys Reporting Engine (MRE) Web Services which could allow a remote unauthenticated attacker to access and download arbitrary files from the system.

Vulnerabilities (CVE)