← Back to home
ICSA-21-306-01  ·  Published 2021-11-02  ·  View on CISA ICS-CERT ↗

Sensormatic Electronics VideoEdge

CVSS 6.1 MEDIUM CISA KEV — Known Exploited

Risk Summary

Successful exploitation of this vulnerability could allow the execution of untrusted code when viewing the VideoEdge admin graphical user interface.

CVEs (1)

Remediations

  • Upgrade VideoEdge: to Version 5.7.1
  • For more detailed mitigation and product upgrade instructions, please see Johnson Controls Product Security Advisory JCI-PSA-2021-17 v1
  • Further ICS security notices and product security guidance are located at the Johnson Controls product security website.
  • Users with additional questions may contact Johnson Controls Global Product Security.

Affected Vendors

Sensormatic Electronics, LLC, Johnson Controls Inc.

Affected Products (1)

Sensormatic Electronics, LLC, Johnson Controls Inc. · VideoEdge < 5.7.1

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more