CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

9CVSS9AI score0.00592EPSS

EUVD-2020-4337

Malware in sbrugna...

8.8CVSS8.8AI score0.00188EPSS

EUVD-2017-16897

Malware in sbrugna...

6.4CVSS6.5AI score0.00145EPSS

EUVD-2016-9201

Malware in sbrugna...

6.5CVSS6.6AI score0.00222EPSS

EUVD-2019-4970

Malware in sbrugna...

6.1CVSS6.7AI score0.0018EPSS

EUVD-2018-19237

Malware in sbrugna...

8.8CVSS7.1AI score0.00102EPSS

EUVD-2019-4971

Malware in sbrugna...

9.8CVSS9.5AI score0.00474EPSS

EUVD-2018-19229

Malware in sbrugna...

RedhatCVE•added 2025/05/22 10:6 a.m.•6 views

CVE-2019-13516

In OSIsoft PI Web API and prior, the affected product is vulnerable to a direct attack due to a cross-site request forgery protection setting that has not taken effect...

8.8CVSS6.8AI score0.00102EPSS

RedhatCVE•added 2025/05/22 8:16 a.m.•6 views

CVE-2019-13515

OSIsoft PI Web API 2018 and prior may allow disclosure of sensitive information...

6.5CVSS6.8AI score0.00222EPSS

CNNVD•added 2024/06/12 12:0 a.m.•4 views

OSIsoft PI Web API Code Issue Vulnerability

The Osisoft OSIsoft PI Web API is a RESTful interface to a set of PI systems from the US company Osisoft. The product supports client applications with read and write access to their AF and PI data over HTTPS. A code issue vulnerability exists in the OSIsoft PI Web API, which stems from a...

8.4CVSS7.1AI score0.00519EPSS

OSV•added 2020/06/23 10:15 p.m.•2 views

CVE-2020-12021

9CVSS7.4AI score0.00592EPSS

Cvelist•added 2020/06/23 9:36 p.m.•13 views

CVE-2020-12021

8.8AI score0.00592EPSS

OSV•added 2019/08/15 7:15 p.m.•4 views

CVE-2019-13515

OSIsoft PI Web API 2018 and prior may allow disclosure of sensitive information...

6.5CVSS6.6AI score

Cvelist•added 2018/03/14 6:0 p.m.•13 views

CVE-2018-7500

A Permissions, Privileges, and Access Controls issue was discovered in OSIsoft PI Web API versions 2017 R2 and prior. Privileges may be escalated, giving attackers access to the PI System via the service account...

9.3AI score0.00474EPSS

Cvelist•added 2018/03/14 6:0 p.m.•12 views

CVE-2018-7508

A Cross-site Scripting issue was discovered in OSIsoft PI Web API versions 2017 R2 and prior. Cross-site scripting may occur when input is incorrectly neutralized...

6AI score0.0018EPSS

NVD•added 2017/08/25 7:29 p.m.•10 views

CVE-2017-7926

A Cross-Site Request Forgery issue was discovered in OSIsoft PI Web API versions prior to 2017 1.9.0. The vulnerability allows cross-site request forgery CSRF attacks to occur when an otherwise-unauthorized cross-site request is sent from a browser the server has previously authenticated...

8.8CVSS8.7AI score0.00188EPSS

CVE•added 2017/08/25 7:0 p.m.•41 views

CVE-2017-7926

CVE-2017-7926 affects OSIsoft PI Web API versions prior to 2017 (1.9.0). The issue is Cross-Site Request Forgery (CSRF) where an unauthorized cross-site request from an authenticated browser can perform actions in the PI Web API. Impact described in connected documents includes potential access t...

8.8CVSS8.5AI score0.00188EPSS

Exploits0References2Affected Software1

CNVD•added 2017/06/21 12:0 a.m.•2 views

OSIsoft PI Web API Cross-Site Request Forgery Vulnerability

The OSIsoft PI Web API is a product for accessing PI system data. A cross-site request forgery vulnerability exists in the OSIsoft PI Web API. As the program fails to properly validate HTTP requests. An attacker could exploit the vulnerability to perform certain unauthorized actions and access th...

8.8CVSS6.8AI score0.00188EPSS

NVD•added 2017/02/13 9:59 p.m.•11 views

CVE-2016-8353

An issue was discovered in OSIsoft PI Web API 2015 R2 Version 1.5.1. There is a weakness in this product that may allow an attacker to access the PI system without the proper permissions...

6.4CVSS6.3AI score0.00145EPSS