CVE-2017-16744
HIGHTridium Niagara AX <3.8 & Niagara 4 <4.4 - Path Traversal
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2017-16744. PoCs published by GainSec.
AI-analyzed exploit summary This repository contains a PoC for CVE-2017-16744 and CVE-2017-16748, which are directory traversal vulnerabilities in Tridium Niagara AX and Niagara 4. The Python script and shell script demonstrate the ability to traverse directories and access sensitive files.
Description
A path traversal vulnerability in Tridium Niagara AX Versions 3.8 and prior and Niagara 4 systems Versions 4.4 and prior installed on Microsoft Windows Systems can be exploited by leveraging valid platform (administrator) credentials.
Exploits (1)
This repository contains a PoC for CVE-2017-16744 and CVE-2017-16748, which are directory traversal vulnerabilities in Tridium Niagara AX and Niagara 4. The Python script and shell script demonstrate the ability to traverse directories and access sensitive files.
References (3)
Scores
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H