Lucene search
K

4 matches found

CNVD
CNVD
added 2017/07/17 12:0 a.m.4 views

OSIsoft PI Coresight Cross-Site Request Forgery Vulnerability

OSIsoft PI Coresight is a set of web-based tools for secure access to PI System data. A cross-site request forgery vulnerability exists in OSIsoft PI Coresight, which can be exploited by an attacker to perform unauthorized actions and gain access to affected applications due to an inability to...

8.8CVSS8.8AI score0.00873EPSS
Exploits0References1
NVD
NVD
added 2017/02/13 9:59 p.m.15 views

CVE-2017-5153

An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords...

7.8CVSS7.5AI score0.00374EPSS
Exploits0References2
Prion
Prion
added 2017/02/13 9:59 p.m.14 views

Design/Logic Flaw

An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords...

2.1CVSS7.4AI score0.00374EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2017/02/13 9:0 p.m.22 views

CVE-2017-5153

An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords...

7.5AI score0.00374EPSS
Exploits0References2
Rows per page
Query Builder