CNNVD-202512-4307 Information
CNNVD ID
CNNVD-202512-4307
Related CVE
- CNNVD Published: 2025-12-24
Description (Chinese)
Johnson Controls iSTAR Ultra等都是美国江森自控(Johnson Controls)公司的产品。Johnson Controls iSTAR Ultra是一款门禁控制器。Johnson Controls iSTAR Ultra SE是一款门禁控制器软件。Johnson Controls iSTAR Ultra G2是一款门禁控制器软件。 Johnson Controls多款产品存在安全漏洞,该漏洞源于特定情况下攻击成功,可能导致设备访问。以下产品受到影响:iSTAR Ultra、iSTAR Ultra SE、iSTAR Ultra G2、iSTAR Ultra G2 SE和iSTAR Edge G2。
Description (English)
Johnson Controls iSTAR Ultra and others are products of Johnson Controls in the United States. Johnson Controls iSTAR Ultra is a door-ban controller. Johnson Controls iSTAR Ultra SE is a door-ban controller software. Johnson Controls iSTAR Ultra G2 is a door-ban controller software. There is a safety loophole in Johnson Controls ’ multiple products, which stems from the success of the attack in a given situation and may lead to equipment access. The following products were affected: iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE and iSTAR Edge G2.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
江森自控
Published
2025-12-24
Last Modified
2026-02-24
References
https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-01 https://www.johnsoncontrols.com/trust-center/cybersecurity/security-advisories
Patch
https://www.johnsoncontrols.com/trust-center/cybersecurity/security-advisories
Share on: