Skip to main content

Pi Data Archive

10 CVEs product

Monthly

CVE-2020-10604 HIGH This Week

In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could crash PI Network Manager service through specially crafted requests. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Pi Data Archive
NVD
CVSS 3.1
7.5
EPSS
2.1%
CVE-2020-10610 HIGH This Week

In OSIsoft PI System multiple products and versions, a local attacker can modify a search path and plant a binary to exploit the affected PI System software to take control of the local computer at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Pi Api Pi Buffer Subsystem Pi Connector +6
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2020-10608 HIGH This Week

In OSIsoft PI System multiple products and versions, a local attacker can plant a binary and bypass a code integrity check for loading PI System libraries. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Jwt Attack Information Disclosure Pi Api Pi Buffer Subsystem Pi Connector +6
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2020-10606 HIGH This Week

In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by affected PI System software. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Information Disclosure Pi Api Pi Buffer Subsystem Pi Connector +6
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2020-10600 HIGH This Week

An authenticated remote attacker could crash PI Archive Subsystem when the subsystem is working under memory pressure. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Pi Data Archive
NVD
CVSS 3.1
7.1
EPSS
0.8%
CVE-2018-7533 HIGH This Week

An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Pi Data Archive
NVD
CVSS 3.0
7.8
EPSS
0.3%
CVE-2018-7531 MEDIUM This Month

An Improper Input Validation issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Denial Of Service Pi Data Archive
NVD
CVSS 3.0
5.9
EPSS
1.4%
CVE-2018-7529 HIGH This Week

A Deserialization of Untrusted Data issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization Pi Data Archive
NVD
CVSS 3.0
7.5
EPSS
2.1%
CVE-2017-7934 MEDIUM This Month

An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Pi Data Archive
NVD
CVSS 3.0
5.9
EPSS
0.9%
CVE-2017-7930 HIGH This Week

An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Pi Data Archive
NVD
CVSS 3.0
7.4
EPSS
0.6%
EPSS 2% CVSS 7.5
HIGH This Week

In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could crash PI Network Manager service through specially crafted requests. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Pi Data Archive
NVD
EPSS 0% CVSS 7.8
HIGH This Week

In OSIsoft PI System multiple products and versions, a local attacker can modify a search path and plant a binary to exploit the affected PI System software to take control of the local computer at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Pi Api +8
NVD
EPSS 0% CVSS 7.8
HIGH This Week

In OSIsoft PI System multiple products and versions, a local attacker can plant a binary and bypass a code integrity check for loading PI System libraries. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Jwt Attack Information Disclosure Pi Api +8
NVD
EPSS 0% CVSS 7.8
HIGH This Week

In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by affected PI System software. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Information Disclosure Pi Api +8
NVD
EPSS 1% CVSS 7.1
HIGH This Week

An authenticated remote attacker could crash PI Archive Subsystem when the subsystem is working under memory pressure. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Pi Data Archive
NVD
EPSS 0% CVSS 7.8
HIGH This Week

An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Pi Data Archive
NVD
EPSS 1% CVSS 5.9
MEDIUM This Month

An Improper Input Validation issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Denial Of Service Pi Data Archive
NVD
EPSS 2% CVSS 7.5
HIGH This Week

A Deserialization of Untrusted Data issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization Pi Data Archive
NVD
EPSS 1% CVSS 5.9
MEDIUM This Month

An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Pi Data Archive
NVD
EPSS 1% CVSS 7.4
HIGH This Week

An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Pi Data Archive
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy