Vulnerability in Johnson Controls Istar Configuration Utility (Icu)
CVE-2025-26383
The iSTAR Configuration Utility (ICU) tool leaks memory, which could result in the unintended exposure of unauthorized data from the Windows PC that ICU is running on.
EPSS: 0.002 (12.3th percentile) — read the EPSS interpretation.
Affected products
- Johnson Controls Istar Configuration Utility (Icu) — versions 0