← Back to home
ICSA-21-182-01  ·  Published 2021-07-01  ·  View on CISA ICS-CERT ↗

Johnson Controls Facility Explorer

CVSS 8.8 HIGH

Risk Summary

Successful exploitation of this vulnerability could give an authenticated user an unintended level of access to the controller 's file system.

CVEs (1)

Remediations

  • Johnson Controls recommends users apply a patch to the Facility Explorer SNC Series Supervisory Controllers (F4-SNC).
  • For more detailed mitigation instructions, please see Johnson Controls Product Security Advisory JCI-PSA-2021-11 v1

Affected Vendors

Johnson Controls Inc

Affected Products (1)

Johnson Controls Inc · Facility Explorer SNC Series Supervisory Controller 11

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more