Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart of Niagara (Versions 4.6.96.28, 4.7.109.20, 4.7.110.32, 4.8.0.110) and Niagara Enterprise Security (Versions 2.4.31, 2.4.45, 4.8.0.35) to correct.
CVSS Information
N/A
Vulnerability Type
远程资源无超时同步访问
Vulnerability Title
Tridium Niagara和Niagara Enterprise Security 安全漏洞
Vulnerability Description
Niagara是一套用于支持设备和应用程序连接的平台。 Tridium Niagara和Niagara Enterprise Security中存在安全漏洞,该漏洞源于在TLS握手期间超时,程序无法中断连接。攻击者可利用该漏洞导致Niagara线程挂起。以下产品及版本受到影响:Tridium Niagara 4.6.96.28版本,4.7.109.20版本,4.7.10.32版本,4.8.0.110版本;Niagara Enterprise Security 2.4.31版本,2.4.45版本,4.8.0
CVSS Information
N/A
Vulnerability Type
N/A