Detections
Analytics

Tridium Niagara Use of a Broken or Risky Cryptographic Algorithm (CVE-2025-3938)

medium Tenable OT Security Plugin ID 505521

Synopsis

The remote OT asset is affected by a vulnerability.

Description

Missing Cryptographic Step vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Cryptanalysis. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterprise Security: before 4.14.2, before 4.15.1, before 4.10.11.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

Upgrade to Niagara Framework and Niagara Enterprise Security version 4.14u2 or later. Updates for 4.10 and 4.15 will be released shortly.
Contact Tridium support at [email protected] for assistance.

See Also

http://www.nessus.org/u?aa3ced70

Plugin Details

Severity: Medium

ID: 505521

File Name: tenable_ot_generic_CVE-2025-3938.nasl

Version: 1.1

Type: Remote

Family: Tenable.ot

Published: 6/25/2026

Updated: 6/25/2026

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v3

Risk Factor: Medium

Base Score: 6.8

Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

Vulnerability Information

CPE: cpe:/a:tridium:niagara:4.15, cpe:/a:tridium:niagara:4.10u10, cpe:/a:tridium:niagara:4.14u1

Required KB Items: Tenable.ot/assetBag

Patch Publication Date: 5/22/2025

Vulnerability Publication Date: 5/22/2025

Reference Information

CVE: CVE-2025-3938

CWE: 327