[Control systems] Johnson Controls security advisory (AV22-602)

From: Canadian Centre for Cyber Security

Number: AV22-602
Date: 26 October 2022

On 25 October 2022, ICS-CERT published an ICS Advisory to highlight a vulnerability in the following product:

  • CEVAS – versions prior to 1.01.46

Exploitation of this vulnerability could result in information disclosure.

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: