CVE-2019-18244

2020-01-1518:50:00

CWE-532

icscert

www.cve.org

4.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

In OSIsoft PI System multiple products and versions, a local attacker could view sensitive information in log files when service accounts are customized during installation or upgrade of PI Vision. The update fixes a previously reported issue.

CNA Affected

[
  {
    "product": "OSIsoft PI System multiple products and versions",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "OSIsoft PI System multiple products and versions"
      }
    ]
  }
]

References

us-cert.cisa.gov/ics/advisories/icsa-20-133-02