EPSS
Percentile
43.9%
Metasys® ADS/ADX servers and NAE/NIE/NCE engines prior to 9.0 make use of a hardcoded RC2 key for certain encryption operations involving the Site Management Portal (SMP).
File data ot_500384.nasl
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7594
www.johnsoncontrols.com/-/media/jci/cyber-solutions/product-security-advisories/2019/jci-psa-2019-06-v1-metasys-icsa-19-227-01.pdf
www.us-cert.gov/ics/advisories/icsa-19-227-01