Johnson Controls 厂商漏洞列表 / CVE 中文分析 76

Johnson Controls 厂商相关 76 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

Johnson Controls 是全球领先的智能建筑解决方案提供商，其业务涵盖楼宇自动化、安防系统及能源管理。截至最新统计，该厂商已收录 76 条 CVE。历史漏洞多集中于远程代码执行、身份验证绕过及跨站脚本攻击，常源于 Web 界面或 IoT 设备固件缺陷。值得关注的是，其 Tyco 安防产品线曾曝出严重配置错误，导致敏感数据泄露。随着物联网设备普及，其供应链安全与固件更新机制成为行业关注焦点，需持续强化端到端防护策略。

Top products by Johnson Controls: Frick Controls Quantum HD Metasys ADS/ADX/OAS server exacqVision iSTAR Configuration Utility (ICU) American Dynamics Illustra Essentials Gen 4 Metasys IQ Panels2, 2+, IQHub, IQPanel 4, PowerG exacqVision Web Service System Configuration Tool (SCT) OpenBlue Enterprise Manager Data Collector Software House C•CURE 9000 iSTAR Ultra, iSTAR Ultra SE Metasys versions prior to 9.0 TYCO Illustra Pro4 Fixed cameras Kantech KT1 Door Controller, Rev01 Software House C•CURE 9000 Installer iSTAReX, iSTAR Edge, iSTAR Ultra LT, iSTAR Ultra , iSTAR Ultra SE OpenBlue Workplace (formerly FM Systems) IQPanel2, IQHub,IQPanel2+,IQPanel 4,PowerG Metasys NAE55/SNE/SNC Quantum HD Unity Compressor IQ Wifi 6 iSTAR Ultra C•CURE 9000 exacqVision Enterprise Manager Kantech EntraPass Corporate Edition Metasys Application and Data Server (ADS, ADS-Lite) Software House C•CURE 9000 v2.70 Kantech EntraPass Security Management Software Special Edition versions 8.22 and prior exacqVision Web Service versions 20.03.2.0 and prior

CVEs 76

CVE ID	标题	CVSS	风险等级	Published
CVE-2026-21660	Johnson Controls Frick Controls Quantum HD 安全漏洞 — Frick Controls Quantum HDCWE-256	9.8	-	2026-02-27
CVE-2026-21659	Johnson Controls Frick Controls Quantum HD 安全漏洞 — Frick Controls Quantum HDCWE-23	9.8	-	2026-02-27
CVE-2026-21658	Johnson Controls Frick Controls Quantum HD 安全漏洞 — Frick Controls Quantum HDCWE-94	9.8	-	2026-02-27
CVE-2026-21657	Johnson Controls Frick Controls Quantum HD 安全漏洞 — Frick Controls Quantum HDCWE-94	6.8	-	2026-02-27
CVE-2026-21656	Johnson Controls Frick Controls Quantum HD 安全漏洞 — Frick Controls Quantum HDCWE-94	6.8	-	2026-02-27
CVE-2026-21654	Johnson Controls Frick Controls Quantum HD 安全漏洞 — Frick Controls Quantum HDCWE-78	6.6	-	2026-02-27
CVE-2025-26385	Johnson Controls Metasys多款产品安全漏洞 — MetasysCWE-77	9.8^AI	Critical^AI	2026-01-30
CVE-2025-26386	Johnson Controls iSTAR Configuration Utility 安全漏洞 — iSTAR Configuration Utility (ICU)CWE-121	8.4^AI	High^AI	2026-01-28
CVE-2025-43876	Johnson Controls多款产品安全漏洞 — iSTAR Ultra, iSTAR Ultra SECWE-78	9.8^AI	Critical^AI	2025-12-24
CVE-2025-43875	Johnson Controls多款产品安全漏洞 — iSTAR Ultra, iSTAR Ultra SECWE-78	8.8^AI	High^AI	2025-12-24
CVE-2025-61740	Johnson Controls IQ series和Johnson Controls PowerG 安全漏洞 — IQ Panels2, 2+, IQHub, IQPanel 4, PowerGCWE-346	9.1^AI	Critical^AI	2025-12-22
CVE-2025-26379	Johnson Controls IQ series和Johnson Controls PowerG 安全漏洞 — IQ Panels2, 2+, IQHub, IQPanel 4, PowerGCWE-338	8.2^AI	High^AI	2025-12-22
CVE-2025-61739	Johnson Controls IQ series和Johnson Controls PowerG 安全漏洞 — IQ Panels2, 2+, IQHub, IQPanel 4, PowerGCWE-323	7.5^AI	High^AI	2025-12-22
CVE-2025-61738	Johnson Controls IQ series和Johnson Controls PowerG 安全漏洞 — IQPanel2, IQHub,IQPanel2+,IQPanel 4,PowerGCWE-319	7.4^AI	High^AI	2025-12-22
CVE-2025-26381	Johnson Controls OpenBlue Workplace 安全漏洞 — OpenBlue Workplace (formerly FM Systems)CWE-425	7.5^AI	High^AI	2025-12-17
CVE-2025-61736	Johnson Controls iSTAR series 安全漏洞 — iSTAReX, iSTAR Edge, iSTAR Ultra LT, iSTAR Ultra , iSTAR Ultra SECWE-298	5.3^AI	Medium^AI	2025-12-17
CVE-2025-26383	Johnson Controls iSTAR Configuration Utility 安全漏洞 — iSTAR Configuration Utility (ICU)CWE-457	5.5^AI	Medium^AI	2025-06-11
CVE-2025-26382	Johnson Controls iSTAR Configuration Utility 安全漏洞 — iSTAR Configuration Utility (ICU)CWE-121	8.4	-	2025-04-24
CVE-2024-32862	Johnson Controls exacqVision Web Service 安全漏洞 — exacqVisionCWE-942	6.8	Medium	2024-08-01
CVE-2024-32758	Johnson Controls exacqVision 安全漏洞 — exacqVisionCWE-326	-	-^AI	2024-08-01
CVE-2024-32931	Johnson Controls exacqVision Web Service 安全漏洞 — exacqVisionCWE-598	5.7	Medium	2024-08-01
CVE-2024-32865	Johnson Controls exacqVision Server 安全漏洞 — exacqVisionCWE-295	6.4	Medium	2024-08-01
CVE-2024-32864	Johnson Controls exacqVision Web Service 安全漏洞 — exacqVisionCWE-319	6.4	Medium	2024-08-01
CVE-2024-32863	Johnson Controls exacqVision Web Service 安全漏洞 — exacqVisionCWE-352	6.8	Medium	2024-08-01
CVE-2024-32861	Johnson Controls Software House C•CURE 9000 安全漏洞 — Software House C•CURE 9000 InstallerCWE-276	7.8	High	2024-07-16
CVE-2024-32753	Johnson Controls Illustra Pro Gen 4 安全漏洞 — TYCO Illustra Pro4 Fixed camerasCWE-1395	9.1^AI	Critical^AI	2024-07-11
CVE-2024-32759	Johnson Controls Software House C CURE 9000 安全漏洞 — Software House C•CURE 9000CWE-1391	9.8^AI	Critical^AI	2024-07-10
CVE-2024-32754	Johnson Controls Kantech KT1、KT2、KT400 安全漏洞 — Kantech KT1 Door Controller, Rev01CWE-200	3.1	Low	2024-07-04
CVE-2024-32932	Johnson Controls Illustra Essentials Gen 4 安全漏洞 — American Dynamics Illustra Essentials Gen 4CWE-257	6.8	Medium	2024-07-02
CVE-2024-32757	Johnson Controls Illustra Essentials Gen 4 安全漏洞 — American Dynamics Illustra Essentials Gen 4CWE-532	6.8	Medium	2024-07-02

本页汇总了 Johnson Controls 厂商截至目前公开的全部 76 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

Johnson Controls 厂商漏洞列表 / CVE 中文分析 76

目标达成感谢每一位支持者 — 我们达成了 100% 目标！