Every CVE whose affected-product data names Tridium Niagara Ax, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2012-4701 — CVSS 9.3 (critical): Directory traversal vulnerability in Tridium Niagara AX 3.5, 3.6, and 3.7 allows remote attackers to read sensitive files, and consequently…
CVE-2012-4028 — CVSS 7.8 (high): Tridium Niagara AX Framework does not properly store credential data, which allows context-dependent attackers to bypass intended access…
CVE-2012-3024 — CVSS 5.0 (medium): Tridium Niagara AX Framework through 3.6 uses predictable values for (1) session IDs and (2) keys, which might allow remote attackers to…
CVE-2012-3025 — CVSS 5.0 (medium): The default configuration of Tridium Niagara AX Framework through 3.6 uses a cleartext base64 format for transmission of credentials in…
CVE-2012-4027 — CVSS 5.0 (medium): Directory traversal vulnerability in Tridium Niagara AX Framework allows remote attackers to read files outside of the intended images…
CVE-2019-13528 — CVSS 4.4 (medium): A specific utility may allow an attacker to gain read access to privileged files in the Niagara AX 3.8u4 (JACE 3e, JACE 6e, JACE 7…