Vulnerabilities > Johnsoncontrols > Istar Ultra G2 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-07-11 CVE-2023-3127 Improper Authentication vulnerability in Johnsoncontrols products
An unauthenticated user could log into iSTAR Ultra, iSTAR Ultra LT, iSTAR Ultra G2, and iSTAR Edge G2 with administrator rights.
network
low complexity
johnsoncontrols CWE-287
critical
9.8