Niagara Security Vulnerabilities and Issues — Niagara CVE List

Lucene search

TridiumNiagara

3 matches found

CVE•added 2018/08/20 9:29 p.m.•82 views

CVE-2017-16744

A path traversal vulnerability in Tridium Niagara AX Versions 3.8 and prior and Niagara 4 systems Versions 4.4 and prior installed on Microsoft Windows Systems can be exploited by leveraging valid platform (administrator) credentials.

7.2CVSS6.8AI score0.17183EPSS

CVE•added 2025/05/22 1:15 p.m.•44 views

CVE-2025-3943

Use of GET Request Method With Sensitive Query Strings vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Parameter Injection. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagar...

7.5CVSS4.5AI score0.00041EPSS

CVE•added 2025/05/22 1:15 p.m.•39 views

CVE-2025-3942

Improper Output Neutralization for Logs vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Input Data Manipulation. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterpris...

7.5CVSS4.6AI score0.00045EPSS