Johnson Controls Sensormatic Electronics Illustra

🗓️ 02 Sep 2021 00:00:00Reported by Industrial Control Systems Cyber Emergency Response TeamType

ics🔗 www.cisa.gov👁 123 Views

Johnson Controls Sensormatic Electronics Illustra vulnerability allows local attacker to obtain super user access to the underlying Linux operating system. Affected products include Pro Gen 3, Flex Gen 2, Pro 2, and Insight. Mitigations involve firmware updates to specific versions and risk minimization measure

Reporter	Title	Published	Views	Family All 459
Gitee	Exploit for Race Condition in Canonical Ubuntu_Linux	10 Nov 202110:33	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	14 Apr 202123:08	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	12 Oct 202120:51	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	23 Nov 202116:28	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	14 Mar 202122:44	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	27 Sep 202114:38	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	11 Dec 202100:59	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	27 Aug 202116:41	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	1 Feb 202121:54	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	18 Mar 202116:49	–	gitee

Source	Link
raw	www.raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-245-01.json
cisa	www.cisa.gov/news-events/ics-advisories/icsa-21-245-01
cisa	www.cisa.gov/news-events/ics-advisories/icsa-21-245-01
us-cert	www.us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf
us-cert	www.us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B

02 Sep 2021 00:00Current

7.9High risk

Vulners AI Score7.9

CVSS 27.2

CVSS 3.17.8

EPSS0.92579

SSVC