4 matches found
OSIsoft PI Coresight Cross-Site Request Forgery Vulnerability
OSIsoft PI Coresight is a set of web-based tools for secure access to PI System data. A cross-site request forgery vulnerability exists in OSIsoft PI Coresight, which can be exploited by an attacker to perform unauthorized actions and gain access to affected applications due to an inability to...
CVE-2017-5153
An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords...
Design/Logic Flaw
An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords...
CVE-2017-5153
An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords...