CVE-2025-43876 | Johnson Controls iSTAR Edge G2 os command injection

Inserito da Angelo Barbosa | Dic 24, 2025 | CVE

A vulnerability classified as critical has been found in Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE and iSTAR Edge G2. The impacted element is an unknown function. This manipulation causes os command injection.

This vulnerability appears as CVE-2025-43876. The attack may be initiated remotely. There is no available exploit.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

CVE-2025-43876 | Johnson Controls iSTAR Edge G2 os command injection

Post correlati

CVE-2024-13408 | wpwax Post Grid, Slider & Carousel Ultimate Plugin up to 1.6.10 on WordPress Shortcode pgcu filename control

CVE-2022-43934 | Brocade SANnav up to 2.2.1 risky encryption

CVE-2024-56320 | GoCD up to 24.4.0 Configuration XML UI improper authorization

CVE-2024-43086 | Google Android 12/12L/13/14/15 AccountManagerService.java validateAccountsInternal information disclosure