目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1310

100%
请我们喝杯咖啡

Johnson Controls 厂商漏洞列表 / CVE 中文分析 76

Johnson Controls 厂商相关 76 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

Johnson Controls 是全球领先的智能建筑解决方案提供商,其业务涵盖楼宇自动化、安防系统及能源管理。截至最新统计,该厂商已收录 76 条 CVE。历史漏洞多集中于远程代码执行、身份验证绕过及跨站脚本攻击,常源于 Web 界面或 IoT 设备固件缺陷。值得关注的是,其 Tyco 安防产品线曾曝出严重配置错误,导致敏感数据泄露。随着物联网设备普及,其供应链安全与固件更新机制成为行业关注焦点,需持续强化端到端防护策略。

找到 4 条结果 / 76清除筛选
Top products by Johnson Controls: Frick Controls Quantum HD Metasys ADS/ADX/OAS server exacqVision iSTAR Configuration Utility (ICU) American Dynamics Illustra Essentials Gen 4 Metasys IQ Panels2, 2+, IQHub, IQPanel 4, PowerG exacqVision Web Service System Configuration Tool (SCT) OpenBlue Enterprise Manager Data Collector Software House C•CURE 9000 iSTAR Ultra, iSTAR Ultra SE Metasys versions prior to 9.0 TYCO Illustra Pro4 Fixed cameras Kantech KT1 Door Controller, Rev01 Software House C•CURE 9000 Installer iSTAReX, iSTAR Edge, iSTAR Ultra LT, iSTAR Ultra , iSTAR Ultra SE OpenBlue Workplace (formerly FM Systems) IQPanel2, IQHub,IQPanel2+,IQPanel 4,PowerG Metasys NAE55/SNE/SNC Quantum HD Unity Compressor IQ Wifi 6 iSTAR Ultra C•CURE 9000 exacqVision Enterprise Manager Kantech EntraPass Corporate Edition Metasys Application and Data Server (ADS, ADS-Lite) Software House C•CURE 9000 v2.70 Kantech EntraPass Security Management Software Special Edition versions 8.22 and prior exacqVision Web Service versions 20.03.2.0 and prior
CVE ID标题CVSS风险等级Published
CVE-2025-26386 Johnson Controls iSTAR Configuration Utility 安全漏洞 — iSTAR Configuration Utility (ICU)CWE-121 8.4AIHighAI2026-01-28
CVE-2025-26383 Johnson Controls iSTAR Configuration Utility 安全漏洞 — iSTAR Configuration Utility (ICU)CWE-457 5.5AIMediumAI2025-06-11
CVE-2025-26382 Johnson Controls iSTAR Configuration Utility 安全漏洞 — iSTAR Configuration Utility (ICU)CWE-121 8.4 -2025-04-24
CVE-2024-32752 Johnson Controls Software House iStar Pro Door Controller 安全漏洞 — iSTAR Configuration Utility (ICU)CWE-306 8.1AIHighAI2024-06-06

本页汇总了 Johnson Controls 厂商截至目前公开的全部 76 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。