Johnson Controls’ iSTAR Ultra family of door controllers contains a cluster of high‑impact vulnerabilities that — if left unpatched — can give remote attackers a path to root access, firmware modification, and local console takeover, creating a direct route from network compromise to physical...
cisa
command injection
default credentials
door controllers
end of service
firmware6.9.3firmware integrity
ics security
istar ultra
johnson controls
network segmentation
ot security
patch management
physical security
rj11 console
signing key
supply chain risks
usb console