Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-22 | CVE-2025-5079 | Injection vulnerability in Campcodes Online Shopping Portal 1.0 A vulnerability was found in Campcodes Online Shopping Portal 1.0. | 9.8 |
| 2025-05-22 | CVE-2025-5077 | SQL Injection vulnerability in Campcodes Online Shopping Portal 1.0 A vulnerability was found in Campcodes Online Shopping Portal 1.0. | 9.8 |
| 2025-05-22 | CVE-2025-5078 | SQL Injection vulnerability in Campcodes Online Shopping Portal 1.0 A vulnerability was found in Campcodes Online Shopping Portal 1.0. | 9.8 |
| 2025-05-22 | CVE-2025-3936 | Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara and Niagara Enterprise Security Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework on Windows, Tridium Niagara Enterprise Security on Windows allows Exploiting Incorrectly Configured Access Control Security Levels. | 9.8 |
| 2025-05-22 | CVE-2025-3937 | Use of Password Hash With Insufficient Computational Effort vulnerability in Tridium Niagara and Niagara Enterprise Security Use of Password Hash With Insufficient Computational Effort vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Cryptanalysis. | 9.8 |
| 2025-05-22 | CVE-2025-3938 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Tridium Niagara and Niagara Enterprise Security Missing Cryptographic Step vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Cryptanalysis. | 9.8 |
| 2025-05-22 | CVE-2025-3940 | Unspecified vulnerability in Tridium Niagara and Niagara Enterprise Security Improper Use of Validation Framework vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Input Data Manipulation. | 9.8 |
| 2025-05-22 | CVE-2025-3941 | Use of Incorrectly-Resolved Name or Reference vulnerability in Tridium Niagara and Niagara Enterprise Security Improper Handling of Windows ::DATA Alternate Data Stream vulnerability in Tridium Niagara Framework on Windows, Tridium Niagara Enterprise Security on Windows allows Input Data Manipulation. | 9.8 |
| 2025-05-22 | CVE-2025-3944 | Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara and Niagara Enterprise Security Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework on QNX, Tridium Niagara Enterprise Security on QNX allows File Manipulation. | 9.8 |
| 2025-05-22 | CVE-2025-3945 | Argument Injection or Modification vulnerability in Tridium Niagara and Niagara Enterprise Security Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Tridium Niagara Framework on QNX, Tridium Niagara Enterprise Security on QNX allows Command Delimiters. | 9.8 |