How severe is CVE-2025-3940?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.3 out of 10.

What type of vulnerability is CVE-2025-3940?

This is classified as CWE-1173, which is a common weakness in software security.

CVE-2025-3940

MEDIUM Year: 2025

CVSS v3 Score

5.3

Medium

Weakness Type

CWE-1173

View all →

Vulnerability Description

Improper Use of Validation Framework vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Input Data Manipulation. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterprise Security: before 4.14.2, before 4.15.1, before 4.10.11. Tridium recommends upgrading to Niagara Framework and Enterprise Security versions 4.14.2u2, 4.15.u1, or 4.10u.11.

CVE-2023-30949

MEDIUM

CVSS:5.3(Medium)

A missing origin validation in Slate sandbox could be exploited by a malicious user to modify the page's content, which could lead to phishing attacks.

CWE-11732023

CVE-2022-1414

HIGH

CVSS:8.8(High)

3scale API Management 2 does not perform adequate sanitation for user input in multiple fields. An authenticated user could use this flaw to inject scripts and possibly gain access to sensitive inform...

CWE-11732022

CVE-2020-1640

HIGH

CVSS:7.5(High)

An improper use of a validation framework when processing incoming genuine BGP packets within Juniper Networks RPD (routing protocols process) daemon allows an attacker to crash RPD thereby causing a ...

CWE-11732020

CVE-2023-30949

MEDIUM

CVSS:5.3(Medium)

A missing origin validation in Slate sandbox could be exploited by a malicious user to modify the page's content, which could lead to phishing attacks.

CWE-11732023

CVE-2025-3940

Vulnerability Description

Related Vulnerabilities

CVE-2023-30949

CVE-2022-1414

CVE-2020-1640

CVE-2023-30949