March 10, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – ICS: Inductive Automation Ignition Multiple Vulnerabilities
May 28, 2020Rewterz Threat Alert – TinyPOS Attack Combines New Techniques for Card Scraping
May 28, 2020Rewterz Threat Advisory – ICS: Inductive Automation Ignition Multiple Vulnerabilities
May 28, 2020Rewterz Threat Alert – TinyPOS Attack Combines New Techniques for Card Scraping
May 28, 2020
Severity
Medium
Analysis Summary
An attacker with authorized access to a low-privileged user account could exploit this vulnerability to gain full system level privileges.
Impact
Improper Access Control
Affected Vendors
Johnson Controls
Affected Products
- Special Edition All versions up to and including v8.22
- Corporate Edition All versions up to and including v8.22
- Global Edition All versions up to and including v8.22
Remediation
Johnson Controls recommends users upgrade all Kantech EntraPass Editions to Version 8.23