12 matches found
EUVD-2018-19258
Malware in sbrugna...
EUVD-2018-19260
Malware in sbrugna...
EUVD-2018-19262
Malware in sbrugna...
OSIsoft PI Data Archive Code Issue Vulnerability
OSIsoft PI Data Archive is a file archiving and storage component for PI Server from OSIsoft, USA. The component is mainly used for archiving and storing configuration information and time series data. A code issue vulnerability exists in OSIsoft PI Data Archive versions 2018 and 2018 SP2. A remo...
CVE-2018-7531
An Improper Input Validation issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Unauthenticated users may use unvalidated custom requests to crash the server...
CVE-2018-7533
An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Insecure default configuration may allow escalation of privileges that gives the actor full control over the system...
Default configuration
An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Insecure default configuration may allow escalation of privileges that gives the actor full control over the system...
CVE-2018-7529
A Deserialization of Untrusted Data issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Unauthenticated users may modify deserialized data to send custom requests that crash the server...
CVE-2018-7531
CVE-2018-7531 affects the OSIsoft PI Data Archive (versions 2017 and earlier). The issue is an improper input validation allowing unauthenticated attackers to send unvalidated custom requests that crash the PI Data Archive server, impacting availability (CWE-20). The NVD entry provides a CVSS v3 ...
CVE-2018-7533
CVE-2018-7533 affects OSIsoft PI Data Archive versions 2017 and prior, describing an Incorrect Default Permissions flaw (CWE-276) that may allow privilege escalation to full control of the system due to insecure default configuration. The vulnerability is characterized by a local attack context w...
CVE-2018-7531
An Improper Input Validation issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Unauthenticated users may use unvalidated custom requests to crash the server...
OSIsoft PI Data Archive Elevation of Privilege Vulnerability
OSIsoft PI Data Archive is an efficient storage and archiving component that enables high performance data retrieval through client software. An elevation of privilege vulnerability exists in OSIsoft PI Data Archive 2017 and prior versions, which can be exploited by an attacker to escalate...