Lucene search
K

48 matches found

CNVD
CNVD
added 2017/06/21 12:0 a.m.4 views

OSIsoft PI Server Authentication Bypass Vulnerability (CNVD-2017-16358)

OSIsoft PI System is a set of data acquisition, analysis, and visualization software.PI Server is the core product of PI System.OSIsoft PI Data Archive is a storage and archiving component of PI Server for data retrieval through client software. An authentication bypass vulnerability exists in...

5.9CVSS7AI score0.02147EPSS
Exploits0References1
ICS
ICS
added 2017/06/13 12:0 a.m.51 views

OSIsoft PI Server 2017

CVSS v3 8.9 ATTENTION: Remotely exploitable. Vendor: OSIsoft Equipment: PI Server 2017 Vulnerabilities: Improper Authentication AFFECTED PRODUCTS OSIsoft reports that the vulnerabilities affect the following PI Server products: PI Data Archive versions prior to 2017. IMPACT Successful exploitatio...

7.4CVSS6.9AI score0.02147EPSS
Exploits0References3
CERT
CERT
added 2010/11/19 12:0 a.m.32 views

OSIsoft PI Server provides an insecure authentication mechanism

Overview OSIsoft PI Server provides an insecure authentication mechanism that could allow attackers to read or modify information in databases. Description PI Server is a core component of the OSIsoft PI System.According to a report from C4 Security, OSISoft release notes login required for PI...

6.4CVSS6.9AI score0.00669EPSS
Exploits0References3
securityvulns
securityvulns
added 2009/10/04 12:0 a.m.22 views

OSISoft PI Server weak authentication

No description provided...

1.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2009/10/04 12:0 a.m.61 views

C4 SCADA Security Advisory - OSISoft PI Server Authentication Weakness

Background ----------------- Vendor product information, from www.osisoft.com : The PI SystemT brings all operational data into a single system that can deliver it to users at all levels of the company - from the plant floor to the enterprise level. The PI System keeps business-critical data alwa...

0.5AI score
Exploits0
NVD
NVD
added 2009/10/01 3:30 p.m.10 views

CVE-2009-0209

PI Server in OSIsoft PI System before 3.4.380.x does not properly use encryption in the default authentication process, which allows remote attackers to read or modify information in databases via unspecified vectors...

6.4CVSS6.6AI score0.00669EPSS
Exploits0References1
Cvelist
Cvelist
added 2009/10/01 3:0 p.m.16 views

CVE-2009-0209

PI Server in OSIsoft PI System before 3.4.380.x does not properly use encryption in the default authentication process, which allows remote attackers to read or modify information in databases via unspecified vectors...

6.6AI score0.00669EPSS
Exploits0References1
CVE
CVE
added 2009/10/01 3:0 p.m.44 views

CVE-2009-0209

CVE-2009-0209 concerns OSIsoft PI Server prior to 3.4.380.x, where the default authentication mechanism is insecure and does not encrypt credentials, enabling a remote attacker to read or modify information in PI Server databases via unspecified vectors. The vulnerability is tied to the PI Server...

6.4CVSS6.6AI score0.00669EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder