Cybersecurity advisory affecting Niagara AX- and Niagara 4-based systems

New Security Update and Fixes Releases for Niagara AX and Niagara 4

Dear valued OEM partner,

New updates for Niagara AX (3.8 update 4) and Niagara 4 (4.4 update 1) are available on Niagara Central.
The Niagara AX 3.8 Update 4 release (3.8.401) includes several fixes and important vulnerability mitigations for cybersecurity protection of Niagara AX systems, including, but not limited to, an important revision of the Java Virtual Machine that fixes critical security vulnerabilities.

The Niagara 4.4 Update 1 release (4.4.92.2.1) includes a number of fixes and important vulnerability mitigations for cybersecurity protection of Niagara 4 systems, including, but not limited to, an important revision of the Java Virtual Machine that fixes critical security vulnerabilities, and a patch for JACE 8000 systems that permanently fixes the WiFi Protected Access II (WPA2) vulnerability described in an earlier technical bulletin.

It is important that all Niagara AX and Niagara 4 customers for all supported platforms update their systems with these releases to mitigate risk. If you have any questions, please contact your Tridium account manager or contact Customer Support via support@tridium.com.

Release Note

Niagara 4.4u1
Niagara AX 3.8u4