CNNVD-202506-1613 Information
CNNVD ID
CNNVD-202506-1613
Related CVE
- CNNVD Published: 2025-06-11
Description (Chinese)
Johnson Controls iSTAR Configuration Utility是美国江森自控(Johnson Controls)公司的一款用于配置和管理iSTAR Controllers的软件工具。 Johnson Controls iSTAR Configuration Utility存在安全漏洞,该漏洞源于内存泄露,可能导致未授权数据暴露。
Description (English)
Johnson Controls iSTAR Construction Utility is a software tool for the configuration and management of iSTAR Contractors at Johnson Controls in the United States. There is a security loophole in Johnson Controls iSTAR Construction Utility, which originates from memory leaks and may lead to unauthorized data exposure.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
江森自控
Published
2025-06-11
Last Modified
2026-02-24
References
https://www.cisa.gov/news-events/ics-advisories/icsa-25-146-01 https://www.johnsoncontrols.com/trust-center/cybersecurity/security-advisories https://nvd.nist.gov/vuln/detail/CVE-2025-26383
Patch
https://www.johnsoncontrols.com/trust-center/cybersecurity/security-advisories
Share on: