CVE-2023-4804: Quantum HD Unity
First published: Fri Nov 10 2023(Updated: )
An unauthorized user could access debug features in Quantum HD Unity products that were accidentally exposed.
Credit: productsecurity@jci.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Johnsoncontrols Quantum Hd Unity Compressor Firmware | >=11.00<11.22 | |
| Johnsoncontrols Quantum Hd Unity Compressor Firmware | >=12.00<12.22 | |
| Johnsoncontrols Quantum Hd Unity Compressor | ||
| Johnsoncontrols Quantum Hd Unity Acuair Firmware | >=11.00<11.12 | |
| Johnsoncontrols Quantum Hd Unity Acuair Firmware | >=12.00<12.12 | |
| Johnsoncontrols Quantum Hd Unity Acuair | ||
| Johnsoncontrols Quantum Hd Unity Condenser\/vessel Firmware | >=11.00<11.11 | |
| Johnsoncontrols Quantum Hd Unity Condenser\/vessel Firmware | >=12.00<12.11 | |
| Johnsoncontrols Quantum Hd Unity Condenser\/vessel | ||
| Johnsoncontrols Quantum Hd Unity Evaporator Firmware | >=11.00<11.11 | |
| Johnsoncontrols Quantum Hd Unity Evaporator Firmware | >=12.00<12.11 | |
| Johnsoncontrols Quantum Hd Unity Evaporator | ||
| Johnsoncontrols Quantum Hd Unity Engine Room Firmware | >=11.00<11.11 | |
| Johnsoncontrols Quantum Hd Unity Engine Room Firmware | >=12.00<12.11 | |
| Johnsoncontrols Quantum Hd Unity Engine Room | ||
| Johnsoncontrols Quantum Hd Unity Interface Firmware | >=11.00<11.11 | |
| Johnsoncontrols Quantum Hd Unity Interface Firmware | >=12.00<12.11 | |
| Johnsoncontrols Quantum Hd Unity Interface |
Remedy
Update all Quantum HD Unity Compressor control panels to firmware version 11.22 (Q5) or 12.22 (Q6).
Remedy
Update all Quantum HD Unity AcuAir control panels to firmware version 11.12 (Q5) or 12.12 (Q6).
Remedy
Update all Quantum HD Unity Condenser/Vessel control panels to firmware version 11.11 (Q5) or 12.11 (Q6).
Remedy
Update all Quantum HD Unity Evaporator control panels to firmware version 11.11 (Q5) or 12.11 (Q6).
Remedy
Update all Quantum HD Unity Engine Room control panels to firmware version 11.11 (Q5) or 12.11 (Q6).
Remedy
Update all Quantum HD Unity Interface control panels to firmware version 11.11 (Q5) or 12.11 (Q6).
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-4804?
CVE-2023-4804 is a vulnerability that allows unauthorized users to access debug features in Quantum HD Unity products.
How severe is CVE-2023-4804?
CVE-2023-4804 is classified as critical with a severity value of 10.
What software is affected by CVE-2023-4804?
Quantum HD Unity products with specific firmware versions are affected. Please refer to the product documentation for the exact versions.
How can I fix CVE-2023-4804?
To fix CVE-2023-4804, it is recommended to apply the latest firmware updates provided by Johnson Controls.
Where can I find more information about CVE-2023-4804?
You can find more information about CVE-2023-4804 on the Johnson Controls website and the CISA website.
- collector/nvd-api
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/title
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/johnsoncontrols
- canonical/johnsoncontrols quantum hd unity compressor firmware
- version/johnsoncontrols quantum hd unity compressor firmware/11.00
- version/johnsoncontrols quantum hd unity compressor firmware/12.00
- canonical/johnsoncontrols quantum hd unity compressor
- canonical/johnsoncontrols quantum hd unity acuair firmware
- version/johnsoncontrols quantum hd unity acuair firmware/11.00
- version/johnsoncontrols quantum hd unity acuair firmware/12.00
- canonical/johnsoncontrols quantum hd unity acuair
- canonical/johnsoncontrols quantum hd unity condenser\/vessel firmware
- version/johnsoncontrols quantum hd unity condenser\/vessel firmware/11.00
- version/johnsoncontrols quantum hd unity condenser\/vessel firmware/12.00
- canonical/johnsoncontrols quantum hd unity condenser\/vessel
- canonical/johnsoncontrols quantum hd unity evaporator firmware
- version/johnsoncontrols quantum hd unity evaporator firmware/11.00
- version/johnsoncontrols quantum hd unity evaporator firmware/12.00
- canonical/johnsoncontrols quantum hd unity evaporator
- canonical/johnsoncontrols quantum hd unity engine room firmware
- version/johnsoncontrols quantum hd unity engine room firmware/11.00
- version/johnsoncontrols quantum hd unity engine room firmware/12.00
- canonical/johnsoncontrols quantum hd unity engine room
- canonical/johnsoncontrols quantum hd unity interface firmware
- version/johnsoncontrols quantum hd unity interface firmware/11.00
- version/johnsoncontrols quantum hd unity interface firmware/12.00
- canonical/johnsoncontrols quantum hd unity interface