CVE-2025-43875 | Johnson Controls iSTAR Edge G2 os command injection

Inserito da Angelo Barbosa | Dic 24, 2025 | CVE

A vulnerability, which was classified as critical, was found in Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE and iSTAR Edge G2. Affected is an unknown function. Executing manipulation can lead to os command injection.

This vulnerability is handled as CVE-2025-43875. The attack can be executed remotely. There is not any exploit available.

CVE-2025-43875 | Johnson Controls iSTAR Edge G2 os command injection

Post correlati

CVE-2024-22895 | DedeCMS 5.7.112 module_upload.php unrestricted upload

CVE-2025-65019 | withastro up to 5.15.8 Image Optimization Endpoint isRemoteAllowed cross site scripting

CVE-2023-50270 | Apache DolphinScheduler up to 3.2.0 Password Change session expiration

CVE-2025-0365 | artbees Jupiter X Core Plugin up to 4.8.7 on WordPress Inline SVG path traversal