Known Vulnerabilities for Niagara Ax by Tridium
Listed below are 6 of the newest known vulnerabilities associated with "Niagara Ax" by "Tridium".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-13528 json | A specific utility may allow an attacker to gain read access to privileged files in the Niagara AX 3.8u4 (JACE 3e, JACE 6e, J... | 4.4 - MEDIUM | 2019-09-24 | 2020-10-16 |
| CVE-2012-4701 json | Directory traversal vulnerability in Tridium Niagara AX 3.5, 3.6, and 3.7 allows remote attackers to read sensitive files, an... | 9.3 - HIGH | 2013-02-15 | 2023-03-22 |
| CVE-2012-4028 json | Tridium Niagara AX Framework does not properly store credential data, which allows context-dependent attackers to bypass inte... | 7.8 - HIGH | 2012-07-16 | 2023-03-22 |
| CVE-2012-4027 json | Directory traversal vulnerability in Tridium Niagara AX Framework allows remote attackers to read files outside of the intend... | 5 - MEDIUM | 2012-07-16 | 2023-03-22 |
| CVE-2012-3025 json | The default configuration of Tridium Niagara AX Framework through 3.6 uses a cleartext base64 format for transmission of cred... | 5 - MEDIUM | 2012-08-16 | 2023-03-22 |
| CVE-2012-3024 json | Tridium Niagara AX Framework through 3.6 uses predictable values for (1) session IDs and (2) keys, which might allow remote a... | 5 - MEDIUM | 2012-08-16 | 2023-03-22 |