CVE-2025-3945 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Tridium Niagara Framework on QNX, Tridium Niagara Enterprise…
High CVSS: 7.2

CVE-2025-3945

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Tridium Niagara Framework on QNX, Tridium Niagara Enterprise Security on QNX allows Command Delimiters. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterprise Security: before 4.14.2, before 4.15.1, before 4.10.11. Tridium recommends upgrading to Niagara Framework and Enterprise Security versions 4.14.2u2, 4.15.u1, or 4.10u.11.
Vendor
Tridium
Product
Niagara
CWE
CWE-88
Yayın Tarihi
2025-05-22 13:15:57
Güncelleme
2025-06-05 14:19:24
Source Identifier
psirt@honeywell.com
KEV Date Added
-

Kategoriler

CWE-88 Niagara HIGH Tridium 2025

Referanslar

https://docs.niagara-community.com/category/tech_bull https://honeywell.com/us/en/product-security#security-notices