johnson controls inc.

Top products

The 15 most recently published vulnerabilities affecting johnson controls inc..

• CVE-2025-53696iSTAR Ultra performs a firmware verification on boot, however the verification does not inspect certain portions of the firmware. These firmware parts may contain malicious code. Tested up to firmw...8.8Jul 28, 2025
• CVE-2025-53695OS Command Injection in iSTAR Ultra products web application allows an authenticated attacker to gain even more privileged access ('root' user) to the device firmware.8.8Jul 28, 2025
• CVE-2024-32862exacqVision CORS6.8Aug 1, 2024
• CVE-2024-32758exacqVision - Key exchanges7.5Aug 1, 2024
• CVE-2024-32931exacqVison - Token Disclosed in URL5.7Aug 1, 2024
• CVE-2024-32865exacqVison - TLS certificate validation6.4Aug 1, 2024
• CVE-2024-32864exacqVison - HTTPS Session Establishment6.4Aug 1, 2024
• CVE-2024-32863exacqVison - CSRF issues with Web Service6.8Aug 1, 2024
• CVE-2024-32752Johnson Controls Software House iSTAR Configuration Utility (ICU) Tool9.1Jun 6, 2024
• CVE-2023-4804Quantum HD Unity10.0Nov 10, 2023
• CVE-2023-3749VideoEdge config7.1Aug 3, 2023
• CVE-2022-21938Metasys MUI Graphics XSS8.1Jun 15, 2022
• CVE-2022-21935Metasys password guessing7.5Jun 15, 2022
• CVE-2022-21937Metasys CSS8.7Jun 15, 2022
• CVE-2021-36207Metasys privilege management8.8Apr 29, 2022