Lucene search
HistoryFeb 08, 2024 - 8:15 p.m.
CVE-2024-0242
iq panel4
iq4 hub
software
security
unauthorized access
vulnerability
nvd
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.3%
Under certain circumstances IQ Panel4 and IQ4 Hub panel software prior to version 4.4.2 could allow unauthorized access to settings.
Affected configurations
Node
johnsoncontrolsqolsys_iq_panel_4_firmwareRange<4.4.2
johnsoncontrolsqolsys_iq_panel_4Match-
Node
johnsoncontrolsqolsys_iq4_hub_firmwareRange<4.4.2
johnsoncontrolsqolsys_iq4_hubMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| johnsoncontrols:qolsys_iq_panel_4_firmware | johnsoncontrols qolsys iq panel 4 firmware | lt | 4.4.2 |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "IQ Panel 4",
"vendor": "Qolsys, Inc.",
"versions": [
{
"lessThan": "4.4.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "IQ4 Hub",
"vendor": "Qolsys, Inc.",
"versions": [
{
"lessThan": "4.4.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
ics
ics
Qolsys IQ Panel 4, IQ4 HUB
2024-02-08 12:00:00
prion
prion
Design/Logic Flaw
2024-02-08 20:15:00
cvelist
cvelist
nvd
nvd
CVE-2024-0242
2024-02-08 20:15:52
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.3%
Related for CVE-2024-0242