Johnson Controls IQ Wifi 6

Risk Summary

Successful exploitation of this vulnerability could allow an unauthorized user to gain account access by conducting a brute force authentication attack.

CVEs (1)

Remediations

• Johnson Controls recommends apply the following mitigations to reduce the risk:
• Upgrade IQ Wifi 6 firmware to version 2.0.2. (Contact Johnson Controls for assistance)
• The firmware update will be pushed to all available devices in the field.
• The firmware update can also be manually loaded by applying the patch tag "iqwifi2.0.2" on the device after navigating to its firmware update page.
• For additional information, see Johnson Controls Product Security Advisory JCI-PSA-2023-06 v1.

Affected Vendors

Affected Products (1)

Affected Sectors

Critical Manufacturing