Vulnerability in Johnson Controls Istar Configuration Utility (Icu)

CVE-2025-26383

The iSTAR Configuration Utility (ICU) tool leaks memory, which could result in the unintended exposure of unauthorized data from the Windows PC that ICU is running on.

EPSS: 0.002 (12.3th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References