Critical vulnerability in Johnson Controls Frick Quantum HD Unity refregiraton controller
Take action: If your Quantum HD Unity is exposed to the internet, lock it down to trusted internal networks only. Then follow the instructions to patch the system.
FRICK Quantum HD Unity System Controller for industrial refrigeration control has a critical vulnerability. The flaw could grant an unauthorized individual access to debug capabilities.
The vulnerability is tracked as CVE-2023-4804 (CVSS3 score 10). An attacker could potentially exploit this flaw to gain access to the product's debug functionalities that were not intended to be publicly accessible, expose configurations and details of credentials.
List of affected Johnson Controls Quantum HD Unity devices:
Johnson Controls advises customers to upgrade to the latest firmware versions:
|Opteev MachineSense FeverWarn contains critical vulnerabilities, one 10/10
|Critical vulnerability reported in Milesight UR32L industrial routers
|Critical Vulnerability in Dover Fueling Solutions MAGLINK LX …
|Siemens, Schneider Electric collaborate to fix over 200 …
|Siemens Issues Patches for 41 flaws, three of …