CVE-2025-3943 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Use of GET Request Method With Sensitive Query Strings vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on…
Medium CVSS: 4.1

CVE-2025-3943

Use of GET Request Method With Sensitive Query Strings vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Parameter Injection. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterprise Security: before 4.14.2, before 4.15.1, before 4.10.11. Tridium recommends upgrading to Niagara Framework and Enterprise Security versions 4.14.2u2, 4.15.u1, or 4.10u.11.
Vendor
Tridium
Product
Niagara
CWE
CWE-598
Yayın Tarihi
2025-05-22 13:15:57
Güncelleme
2025-06-04 19:27:46
Source Identifier
psirt@honeywell.com
KEV Date Added
-

Kategoriler

CWE-598 Niagara MEDIUM Tridium 2025

Referanslar

https://docs.niagara-community.com/category/tech_bull https://honeywell.com/us/en/product-security#security-notices