Primary

Context

Johnson Controls iSTAR Ultra and Edge OS Command Injection Vulnerability Allowing Full Device Access

Vulnerability

Patched

A command injection vulnerability has been identified in Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, and iSTAR Edge G2 door controllers, all versions prior to the latest release. This vulnerability could be exploited to modify firmware and gain complete control over the affected device.

Impact

Exploitation of this vulnerability could lead to unauthorized firmware modifications and full access to the device.

Remediation

Users are advised to upgrade iSTAR Ultra, iSTAR Ultra SE, and iSTAR Ultra LT to version 6.9.7.CU01 or greater. For iSTAR Ultra G2, iSTAR Ultra G2 SE, and iSTAR Edge G2, upgrade to version 6.9.3 or greater. For detailed mitigation instructions, refer to the Johnson Controls Product Security Advisory JCI-PSA-2025-11 and JCI-PSA-2025-13.

Added: Dec 17, 2025, 4:18 PM

Updated: Dec 17, 2025, 4:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

4.9

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

4.9

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Johnson Controls iSTAR Ultra and Edge OS Command Injection Vulnerability Allowing Full Device Access

Vulnerability

Impact

Remediation

Affected Products

Johnson Controls iSTAR Ultra

Johnson Controls iSTAR Ultra G2

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating