CVE-2017-16744

NONE EPSS 92.6%
Published Aug 20, 20187y ago · Modified Jun 17, 20262w ago
Find Similar
Published Aug 20, 2018 7y ago
Last Modified Jun 17, 2026 2w ago

Description

A path traversal vulnerability in Tridium Niagara AX Versions 3.8 and prior and Niagara 4 systems Versions 4.4 and prior installed on Microsoft Windows Systems can be exploited by leveraging valid platform (administrator) credentials.

Threat Intelligence

EPSS Exploit Probability
92.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-22 Path Traversal Resource Mgmt

Affected Products 2

VendorProductVersionRange
tridiumniagara*≥4.0  –  ≤4.4
tridiumniagara_ax_framework* ≤3.8

References 3

  • securityfocus.com http://www.securityfocus.com/bid/105101
    Third Party AdvisoryVDB Entry
  • ics-cert.us-cert.gov https://ics-cert.us-cert.gov/advisories/ICSA-18-191-03
    Third Party AdvisoryUS Government ResourceVDB Entry
  • ics-cert.us-cert.gov https://ics-cert.us-cert.gov/advisories/ICSA-19-022-01

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.