JUNG Smart Visu Server 1.1.1050 Remote Server Shutdown
Title: JUNG Smart Visu Server 1.1.1050 Remote Server Shutdown
Advisory ID: ZSL-2026-5971
Type: Local/Remote
Impact: Denial of Service
Risk: (4/5)
Release Date: 12.02.2026
[07.02.2026] Vendor contacted.
[11.02.2026] No response from the vendor.
[12.02.2026] Public security advisory released.
Web: https://www.zeroscience.mk
e-mail: [email protected]
Advisory ID: ZSL-2026-5971
Type: Local/Remote
Impact: Denial of Service
Risk: (4/5)
Release Date: 12.02.2026
Summary
The Smart Visu Server makes your intelligent building control convenient. With the user-friendly operating concept, you can control both the KNX system and other systems such as Philips Hue or Sonos on your mobile devices. You can likewise connect voice control to your KNX system with Amazon Alexa or Google Assistant via the Smart Visu Server.Description
The device is suffering from a Denial of Service (DoS). An unauthenticated attacker can reboot or shutdown the server by sending one GET request.Vendor
ALBRECHT JUNG GMBH & CO. KG - https://www.jung-group.com | https://www.jung.deAffected Version
1.1.1050Tested On
Jetty(9.2.12.v20150709)Vendor Status
[07.02.2026] Vulnerability discovered.[07.02.2026] Vendor contacted.
[11.02.2026] No response from the vendor.
[12.02.2026] Public security advisory released.
PoC
jung_dos.txtCredits
Vulnerability discovered by Gjoko Krstic - <[email protected]>References
N/AChangelog
[12.02.2026] - Initial releaseContact
Zero Science LabWeb: https://www.zeroscience.mk
e-mail: [email protected]
