Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Tridium Niagara AX Web Server < 3.5.41.2 / 3.6 < 3.6.48.2 / 3.7 < 3.7.46.2 Directory Traversal Vulnerability

High

Synopsis

A vulnerable version of the Tridium Niagara AX Web Server has been detected.

Description

The detected version of Tridium Niagara AX Web Server contains a directory traversal vulnerability which may allow a remote attacker to gain access to sensitive files including 'config.bog'. The 'config.bog' file contains information which could be used to gain control of the system.

Solution

Upgrade to the latest version of Niagara AX or apply the appropriate security patch per Tridium's security advisory.