CVE-2025-53696 | Johnson Controls iSTAR Ultra up to 6.9.2 Firmware code download

A vulnerability classified as problematic has been found in Johnson Controls iSTAR Ultra up to 6.9.2. This affects an unknown part of the component Firmware Handler. The manipulation leads to download of code without integrity check.

This vulnerability is uniquely identified as CVE-2025-53696. The attack needs to be approached locally. There is no exploit available.VulDB Recent EntriesRead More