CVE-2017-16744

EPSS 6.2%CWE-22

A path traversal vulnerability in Tridium Niagara AX Versions 3.8 and prior and Niagara 4 systems Versions 4.4 and prior installed on Microsoft Windows Systems can be exploited by leveraging valid platform (administrator) credentials.

Produtos afetados

ICS-CERT · Niagara AX Framework and Niagara 4 Framework

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://ics-cert.us-cert.gov/advisories/ICSA-18-191-03 https://ics-cert.us-cert.gov/advisories/ICSA-19-022-01 http://www.securityfocus.com/bid/105101