HIGH🇬🇧 English

CVE-2017-16744

CVSS 7.2v3.0pub. 2018-08-20upd. 2024-11-21

A path traversal vulnerability in Tridium Niagara AX Versions 3.8 and prior and Niagara 4 systems Versions 4.4 and prior installed on Microsoft Windows Systems can be exploited by leveraging valid platform (administrator) credentials.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  • Tridium Niagara

    APP
    Tridium
    4.0 – 4.4
  • Tridium Niagara Ax Framework

    APP
    Tridium
    ≤ 3.8
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Path Traversal
CWE
Referencje

Powiązane podatności

CVE-2017-16748CRITICAL9.8ten sam produkt

An attacker can log into the local Niagara platform (Niagara AX Framework Versions 3.8 and prior or Niagara 4 ...

CVE-2025-3945HIGH7.2ten sam produkt

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Tridium Ni...

CVE-2025-3944HIGH7.2ten sam produkt

Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework on QNX, Tridi...

CVE-2025-3937HIGH7.7ten sam produkt

Use of Password Hash With Insufficient Computational Effort vulnerability in Tridium Niagara Framework on Wind...

CVE-2025-3938MEDIUM6.8ten sam produkt

Missing Cryptographic Step vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara ...

CVE-2017-16744 — HIGH 7.2 | CVEbaza.pl