PT-2026-22323 · Johnson Controls · Quantum Hd
Noam Moshe
·
Publicado
2026-02-27
·
Atualizado
2026-03-04
·
CVE-2026-21657
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Johnson Controls Frick Controls Quantum HD versions 10.22 and prior
Description
A flaw exists in Johnson Controls Frick Controls Quantum HD that allows code injection. Insufficient input validation in certain parameters may permit unexpected actions, potentially impacting device security before authentication.
Recommendations
Update to a version later than 10.22.
Correção
RCE
Code Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Quantum Hd