Vulnerability Details CVE-2017-16744
A path traversal vulnerability in Tridium Niagara AX Versions 3.8 and prior and Niagara 4 systems Versions 4.4 and prior installed on Microsoft Windows Systems can be exploited by leveraging valid platform (administrator) credentials.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.177
EPSS Ranking 94.7%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 6.5
References
Products affected by CVE-2017-16744
-
cpe:2.3:a:tridium:niagara:4.0
-
cpe:2.3:a:tridium:niagara:4.1
-
cpe:2.3:a:tridium:niagara:4.2
-
cpe:2.3:a:tridium:niagara:4.3
-
cpe:2.3:a:tridium:niagara:4.4
-
cpe:2.3:a:tridium:niagara_ax_framework:3.8