CVE-2025-3942

May 22, 2025 invoker category_cve

CVE Details

Basic Information

Title	CVE-2025-3942
Type	cve
Published	2025-05-22T13:15:57
Last Seen	2025-05-22T13:22:20

CVSS Information

Base Score	4.3 (MEDIUM)
Attack Vector	NETWORK
Attack Complexity	LOW
Privileges Required	LOW
User Interaction	NONE
Scope	UNCHANGED
Confidentiality Impact	NONE
Integrity Impact	LOW
Availability Impact	NONE

AI Analysis

AI Description	A vulnerability in Tridium Niagara Framework allows improper output neutralization for logs, potentially enabling input data manipulation across multiple operating systems.
AI Severity	Medium
Vendor	Tridium (Honeywell)
Product	Tridium Niagara Framework
Affected Version

Additional Information

CVE List	CVE-2025-3942
CWE List	CWE-117
Bulletin Family	cve

Description

Improper Output Neutralization for Logs vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Input Data Manipulation. This…

CVSS Score Summary

Base Score: %!f(string=#) (MEDIUM)

View Full CVE Details