%20(1).webp "CISA Publishes ICS Advisories Highlighting New Vulnerabilities and Exploits")
A new cybersecurity vulnerability has been identified in Johnson Controlsβ ICU Tool, used for managing access control systems in critical infrastructure sectors. The flaw could lead to sensitive data exposure due to memory leakage, emphasizing the need for urgent updates and network security measures. #CISA #CVE202526383
Keypoints
- The vulnerability CVE-2025-26383 affects all ICU Tool versions before 6.9.5.
- It involves the βUse of Uninitialized Variableβ flaw, leading to potential memory leakage.
- The attack requires local or network proximity, with a high confidentiality risk.
- Johnson Controls has released version 6.9.5 to fix the vulnerability.
- Mitigation includes updating software, network segmentation, and enhanced monitoring practices.
Read More: https://gbhackers.com/cisa-publishes-ics-advisories/