Vulnerabilidades em Johnson Controls
76 resultadosCVE-2025-26381MEDIUMOpenBlue Mobile Web Application configuration issue for optional for OpenBlue Workplace (formerly FM Systems)EPSS 0.3%CVE-2025-43875HIGHiSTAR Ultra, Ultra SE, Ultra G2, Ultra G2 SE, iSTAR Edge G2 - Authenticated web application command injection - getOptionsInfoEPSS 0.3%CVE-2025-43876HIGHiSTAR Ultra, Ultra SE, Ultra G2, Ultra G2 SE, iSTAR Edge G2 - Authenticated web application command injection - get8021xSettingsEPSS 0.3%CVE-2026-21660MEDIUMJohnson Controls-Frick Quantum HD-Hardcoded Email Credentials Saved as Plaintext in FirmwareEPSS 0.2%CVE-2024-32754LOWJohnson Controls Kantech KT1, KT2, and KT400 Door Controllers - Exposure of Sensitive InformationEPSS 0.2%CVE-2025-26383MEDIUMThe iSTAR Configuration Utility (ICU) tool leaks memory, which could result in the unintended exposure of unauthorized data from the WindowsEPSS 0.2%CVE-2024-32864MEDIUMexacqVison - HTTPS Session EstablishmentEPSS 0.2%CVE-2024-32863MEDIUMexacqVison - CSRF issues with Web ServiceEPSS 0.2%CVE-2025-26379HIGHJohnson Controls IQ Panels2, 2+, IQHub, IQPanel 4, PowerG use of Cryptographically Weak Pseudo-Random Number GeneratorEPSS 0.2%CVE-2025-61739HIGHJohnson Controls IQ Panels2, 2+, IQHub, IQPanel 4, PowerG reusing a nonce, key pair in encryptionEPSS 0.2%CVE-2025-61738LOWJohnson Controls PowerG and IQPanel cleartext transmission of sensitive informationEPSS 0.2%CVE-2024-0912HIGHCCURE passwords exposed to administratorsEPSS 0.2%CVE-2024-32861HIGHSoftware House C•CURE - CouchDB executable protectionEPSS 0.1%CVE-2024-32865MEDIUMexacqVison - TLS certificate validationEPSS 0.1%CVE-2025-61740HIGHJohnson Controls IQ Panels2, 2+, IQHub, IQPanel 4, PowerG Origin Validation ErrorEPSS 0.1%CVE-2025-61736HIGHiSTAR- Improper Validation of Certificate ExpirationEPSS 0.1%