Skip to main content

Istar Ultra Firmware

3 CVEs product

Monthly

CVE-2023-3127 CRITICAL Act Now

An unauthenticated user could log into iSTAR Ultra, iSTAR Ultra LT, iSTAR Ultra G2, and iSTAR Edge G2 with administrator rights. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Istar Ultra Firmware Istar Ultra Lt Firmware Istar Ultra G2 Firmware Edge G2 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2022-21941 CRITICAL Act Now

All versions of iSTAR Ultra prior to version 6.8.9.CU01 are vulnerable to a command injection that could allow an unauthenticated user root access to the system. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Istar Ultra Firmware
NVD
CVSS 3.1
9.8
EPSS
1.9%
CVE-2017-17704 HIGH This Week

A door-unlocking issue was discovered on Software House iStar Ultra devices through 6.5.2.20569 when used in conjunction with the IP-ACM Ethernet Door Module. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Istar Ultra Firmware
NVD
CVSS 3.0
7.4
EPSS
0.2%
EPSS 1% CVSS 9.8
CRITICAL Act Now

An unauthenticated user could log into iSTAR Ultra, iSTAR Ultra LT, iSTAR Ultra G2, and iSTAR Edge G2 with administrator rights. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Istar Ultra Firmware Istar Ultra Lt Firmware +2
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

All versions of iSTAR Ultra prior to version 6.8.9.CU01 are vulnerable to a command injection that could allow an unauthenticated user root access to the system. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Istar Ultra Firmware
NVD
EPSS 0% CVSS 7.4
HIGH This Week

A door-unlocking issue was discovered on Software House iStar Ultra devices through 6.5.2.20569 when used in conjunction with the IP-ACM Ethernet Door Module. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Istar Ultra Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy