Описание
A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart of Niagara (Versions 4.6.96.28, 4.7.109.20, 4.7.110.32, 4.8.0.110) and Niagara Enterprise Security (Versions 2.4.31, 2.4.45, 4.8.0.35) to correct.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:tridium:niagara:4.6.96.28:*:*:*:*:*:*:*
cpe:2.3:a:tridium:niagara:4.7.109.20:*:*:*:*:*:*:*
cpe:2.3:a:tridium:niagara:4.7.110.32:*:*:*:*:*:*:*
cpe:2.3:a:tridium:niagara:4.8.0.110:*:*:*:*:*:*:*
cpe:2.3:a:tridium:niagara_enterprise_security:2.4.31:*:*:*:*:*:*:*
cpe:2.3:a:tridium:niagara_enterprise_security:2.4.45:*:*:*:*:*:*:*
cpe:2.3:a:tridium:niagara_enterprise_security:4.8.0.35:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00114
Низкий
4.3 Medium
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-1088
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart of Niagara (Versions 4.6.96.28, 4.7.109.20, 4.7.110.32, 4.8.0.110) and Niagara Enterprise Security (Versions 2.4.31, 2.4.45, 4.8.0.35) to correct.
EPSS
Процентиль: 30%
0.00114
Низкий
4.3 Medium
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-1088
NVD-CWE-Other