← Back to home
ICSA-21-257-02  ·  Published 2021-09-14  ·  View on CISA ICS-CERT ↗

Johnson Controls Sensormatic Electronics KT-1

CVSS 8.6 HIGH

Risk Summary

Successful exploitation of this vulnerability may allow replay attacks.

CVEs (1)

Remediations

  • Johnson Controls recommends users upgrade the KT-1 controller to Version 3.04 and upgrade EntraPass to Version 8.40
  • For more detailed mitigation instructions, please see Johnson Controls Product Security Advisory JCI-PSA-2021-14

Affected Vendors

Sensormatic Electronics, LLC, Johnson Controls Inc.

Affected Products (1)

Sensormatic Electronics, LLC, Johnson Controls Inc. · KT-1 <=3.01

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more