Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIcscertCVELIST:CVE-2018-18985
HistoryJan 10, 2019 - 12:00 a.m.

CVE-2018-18985

2019-01-1000:00:00
CWE-79
icscert
www.cve.org

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.5%

JSON

Tridium Niagara Enterprise Security 2.3u1, all versions prior to 2.3.118.6, Niagara AX 3.8u4, all versions prior to 3.8.401.1, Niagara 4.4u2, all versions prior to 4.4.93.40.2, and Niagara 4.6, all versions prior to 4.6.96.28.4 a cross-site scripting vulnerability has been identified that may allow a remote attacker to inject code to some web pages affecting confidentiality.

CNA Affected

[
  {
    "product": "Tridium Niagara Enterprise Security 2.3u1, all versions prior to 2.3.118.6, Niagara AX 3.8u4, all versions prior to 3.8.401.1, Niagara 4.4u2, all versions prior to 4.4.93.40.2, and Niagara 4.6, all versions prior to 4.6.96.28.4",
    "vendor": "Tridium",
    "versions": [
      {
        "status": "affected",
        "version": "Tridium Niagara Enterprise Security 2.3u1, all versions prior to 2.3.118.6, Niagara AX 3.8u4, all versions prior to 3.8.401.1, Niagara 4.4u2, all versions prior to 4.4.93.40.2, and Niagara 4.6, all versions prior to 4.6.96.28.4"
      }
    ]
  }
]

Related

nvd 1
nessus 2
ics 1
cve 1
prion 1
nvd
nvd
CVE-2018-18985
2019-01-29 16:29:00
nessus
nessus
Tridium Niagara Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2020-08-10 00:00:00
Tridium Niagara Enterprise Security, Niagara AX, and Niagara 4 Improper Neutralization of Input During Web Page Generation (CVE-2018-18985)
2023-03-21 00:00:00
ics
ics
Tridium Niagara Enterprise Security, Niagara AX, and Niagara 4
2019-01-10 12:00:00
cve
cve
CVE-2018-18985
2019-01-29 16:29:00
prion
prion
Cross site scripting
2019-01-29 16:29:00

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.5%

JSON
Related for CVELIST:CVE-2018-18985
nvd1nessus2ics1cve1prion1