Known Vulnerabilities for Niagara Ax by Tridium
Listed below are 6 of the newest known vulnerabilities associated with "Niagara Ax" by "Tridium".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-13528 | A specific utility may allow an attacker to gain read access to privileged files in the Niagara AX 3.8u4 (JACE 3e, JACE 6e, J... | 4.4 - MEDIUM | 2019-09-24 | 2020-10-16 |
| CVE-2012-4701 | Directory traversal vulnerability in Tridium Niagara AX 3.5, 3.6, and 3.7 allows remote attackers to read sensitive files, an... | 9.3 - HIGH | 2013-02-15 | 2023-03-22 |
| CVE-2012-4028 | Tridium Niagara AX Framework does not properly store credential data, which allows context-dependent attackers to bypass inte... | 7.8 - HIGH | 2012-07-16 | 2023-03-22 |
| CVE-2012-4027 | Directory traversal vulnerability in Tridium Niagara AX Framework allows remote attackers to read files outside of the intend... | 5 - MEDIUM | 2012-07-16 | 2023-03-22 |
| CVE-2012-3025 | The default configuration of Tridium Niagara AX Framework through 3.6 uses a cleartext base64 format for transmission of cred... | 5 - MEDIUM | 2012-08-16 | 2023-03-22 |
| CVE-2012-3024 | Tridium Niagara AX Framework through 3.6 uses predictable values for (1) session IDs and (2) keys, which might allow remote a... | 5 - MEDIUM | 2012-08-16 | 2023-03-22 |