← Back to home
ICSA-24-263-05  ·  Published 2024-09-19  ·  View on CISA ICS-CERT ↗

Kastle Systems Access Control System

CVSS 8.6 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to access sensitive information on the affected product.

CVEs (2)

Remediations

  • Kastle Systems have fixed the system configuration vulnerabilities internally. No user interaction is required.
  • CISA would like to highlight that this is a cloud-based solution hosted by Kastle Systems, and CISA's traditional mitigation strategies may not be applicable in this context.

Affected Vendors

Kastle Systems

Affected Products (1)

Kastle Systems · Access Control System Firmware <May_1_2024

Affected Sectors

Commercial Facilities, Government Facilities

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more