CVE-2025-26386 | Johnson Controls iSTAR Configuration Utility up to 6.9.7 stack-based overflow

Inserito da Angelo Barbosa | Gen 28, 2026 | CVE

A vulnerability described as critical has been identified in Johnson Controls iSTAR Configuration Utility up to 6.9.7. Impacted is an unknown function. The manipulation results in stack-based buffer overflow.

This vulnerability is cataloged as CVE-2025-26386. The attack may be launched remotely. There is no exploit available.

CVE-2025-26386 | Johnson Controls iSTAR Configuration Utility up to 6.9.7 stack-based overflow

Post correlati

CVE-2024-38379 | Apache Allura up to 1.17.0 cross site scripting

CVE-2024-46689 | Linux Kernel up to 6.10.7 Shared Memory Page infinite loop

CVE-2024-41707 | Archer Platform up to 2024.04 Trusted Application Data Store cross site scripting

CVE-2025-14081 | Ultimate Member Plugin up to 2.11.0 on WordPress Setting required_perm access control