PI Coresight 2016 R2 contains a cross-site request forgery vulnerability that may allow access to the PI system. OSIsoft recommends that users upgrade to PI Vision 2017 or greater to mitigate this vulnerability.
[
{
"product": "PI Coresight",
"vendor": "OSIsoft",
"versions": [
{
"status": "affected",
"version": "2016 R2 and earlier versions."
}
]
}
]