ГлавнаяУязвимости → CVE-2025-3944
7.2высокая

CVE-2025-3944

Описание

Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework on QNX, Tridium Niagara Enterprise Security on QNX allows File Manipulation. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterprise Security: before 4.14.2, before 4.15.1, before 4.10.11. Tridium recommends upgrading to Niagara Framework and Enterprise Security versions 4.14.2u2, 4.15.u1, or 4.10u.11.

Затрагиваемое ПО
Tridium NiagaraTridium Niagara enterprise securityBlackberry QnxLinux Linux kernelMicrosoft Windows
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://docs.niagara-community.com/category/tech_bullhttps://www.honeywell.com/us/en/product-security#security-notices