Iqhub CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-61739	1 Johnsoncontrols	5 Iq Panels2, Iq Panels2+, Iqhub and 2 more	2025-12-23	N/A
Due to Nonce reuse, attackers can perform reply attack or decrypt captured packets.
CVE-2025-61738	1 Johnsoncontrols	5 Iq Panels2, Iq Panels2+, Iqhub and 2 more	2025-12-23	N/A
Under certain circumstances, attacker can capture the network key, read or write encrypted packets on the PowerG network.
CVE-2025-26379	1 Johnsoncontrols	5 Iq Panels2, Iq Panels2+, Iqhub and 2 more	2025-12-23	N/A
Use of a weak pseudo-random number generator, which may allow an attacker to read or inject encrypted PowerG packets.
CVE-2025-61740	1 Johnsoncontrols	5 Iq Panels2, Iq Panels2+, Iqhub and 2 more	2025-12-23	N/A
Authentication issue that does not verify the source of a packet which could allow an attacker to create a denial-of-service condition or modify the configuration of the device.

Page 1 of 1.