Lucene search
K

90 matches found

Vulnrichment
Vulnrichment
added 2022/04/18 4:20 p.m.4 views

CVE-2020-25167 OSIsoft PI Vision Incorrect Authorization

OSIsoft PI Vision 2020 versions prior to 3.5.0 could disclose information to a user with insufficient privileges for an AF attribute...

4.9CVSS6.5AI score0.00719EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/04/18 4:20 p.m.25 views

CVE-2020-25167 OSIsoft PI Vision Incorrect Authorization

OSIsoft PI Vision 2020 versions prior to 3.5.0 could disclose information to a user with insufficient privileges for an AF attribute...

4.9CVSS6.3AI score0.00719EPSS
Exploits0References1
CVE
CVE
added 2022/04/18 4:20 p.m.75 views

CVE-2020-25163

CVE-2020-25163 affects OSIsoft PI Vision (PI Vision 2020) prior to version 3.5.0. A remote attacker with write access to PI ProcessBook files can inject code that gets imported into PI Vision, enabling cross-site scripting and potentially unauthorized disclosure, modification, or deletion of PI S...

7.7CVSS7.2AI score0.0091EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/04/18 4:20 p.m.5 views

CVE-2020-25163 OSIsoft PI Vision Cross-site Scripting

A remote attacker with write access to PI ProcessBook files could inject code that is imported into OSIsoft PI Vision 2020 versions prior to 3.5.0. Unauthorized information disclosure, modification, or deletion is also possible if a victim views or interacts with the infected display. This...

7.7CVSS7.4AI score0.0091EPSS
Exploits0References1
OSV
OSV
added 2021/11/17 7:15 p.m.5 views

CVE-2021-43551

A remote attacker with write access to PI Vision could inject code into a display. Unauthorized information disclosure, modification, or deletion is possible if a victim views or interacts with the infected display using Microsoft Internet Explorer. The impact affects PI System data and other dat...

5.4CVSS5.9AI score0.0059EPSS
Exploits0References1
OSV
OSV
added 2021/11/17 7:15 p.m.4 views

CVE-2021-43553

PI Vision could disclose information to a user with insufficient privileges for an AF attribute that is the child of another attribute and is configured as a Limits property...

4.3CVSS5.8AI score0.00526EPSS
Exploits0References1
NVD
NVD
added 2021/11/17 7:15 p.m.15 views

CVE-2021-43551

A remote attacker with write access to PI Vision could inject code into a display. Unauthorized information disclosure, modification, or deletion is possible if a victim views or interacts with the infected display using Microsoft Internet Explorer. The impact affects PI System data and other dat...

6.5CVSS0.0059EPSS
Exploits0References1
NVD
NVD
added 2021/11/17 7:15 p.m.20 views

CVE-2021-43553

PI Vision could disclose information to a user with insufficient privileges for an AF attribute that is the child of another attribute and is configured as a Limits property...

4.3CVSS0.00526EPSS
Exploits0References1
Prion
Prion
added 2021/11/17 7:15 p.m.12 views

Information disclosure

A remote attacker with write access to PI Vision could inject code into a display. Unauthorized information disclosure, modification, or deletion is possible if a victim views or interacts with the infected display using Microsoft Internet Explorer. The impact affects PI System data and other dat...

3.5CVSS5.4AI score0.0059EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/11/17 7:15 p.m.16 views

Design/Logic Flaw

PI Vision could disclose information to a user with insufficient privileges for an AF attribute that is the child of another attribute and is configured as a Limits property...

4CVSS4.7AI score0.00526EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/17 6:20 p.m.39 views

CVE-2021-43553

Summary: CVE-2021-43553 affects OSIsoft PI Vision via an Incorrect Authorization flaw that could disclose information to a user with insufficient privileges for an AF attribute that is a child of another attribute and configured as a Limits property. Affected product/area (from sources): PI Visio...

4.3CVSS4.4AI score0.00526EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/11/17 6:20 p.m.30 views

CVE-2021-43553 OSIsoft PI Vision

PI Vision could disclose information to a user with insufficient privileges for an AF attribute that is the child of another attribute and is configured as a Limits property...

3.1CVSS4.8AI score0.00526EPSS
Exploits0References1
CVE
CVE
added 2021/11/17 6:19 p.m.54 views

CVE-2021-43551

CVE-2021-43551 affects OSIsoft PI Vision. A remote attacker with write access can inject code into a display (cross‑site scripting), potentially causing information disclosure, modification, or deletion when a victim loads/interacts with the infected display in Internet Explorer. PI Vision prior ...

6.5CVSS5.7AI score0.0059EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/11/17 6:19 p.m.29 views

CVE-2021-43551 OSIsoft PI Vision

A remote attacker with write access to PI Vision could inject code into a display. Unauthorized information disclosure, modification, or deletion is possible if a victim views or interacts with the infected display using Microsoft Internet Explorer. The impact affects PI System data and other dat...

6.5CVSS6.6AI score0.0059EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/11/17 12:0 a.m.4 views

OSIsoft PI Vision 跨站脚本漏洞

Osisoft OSIsoft PI Vision is a suite of visualization tools from OSIsoft Osisoft USA that supports accessing PI System data from mobile devices, and supports self-configuration of trends, images, and data values in order to present data information. A cross-site scripting vulnerability exists in...

6.5CVSS5.6AI score0.0059EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/11/09 7:12 p.m.3 views

CVE-2021-43551

A remote attacker with write access to PI Vision could inject code into a display. Unauthorized information disclosure, modification, or deletion is possible if a victim views or interacts with the infected display using Microsoft Internet Explorer. The impact affects PI System data and other dat...

6.5CVSS6.2AI score0.0059EPSS
Exploits0References2
ICS
ICS
added 2021/11/09 12:0 a.m.73 views

OSIsoft PI Vision

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: OSIsoft Equipment: PI Vision Vulnerabilities: Cross-site Scripting, Incorrect Authorization 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to information disclosure,...

6.5CVSS5.4AI score0.0059EPSS
Exploits0References5
ICS
ICS
added 2020/11/10 12:0 a.m.73 views

OSIsoft PI Vision

1. EXECUTIVE SUMMARY CVSS v3 7.7 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: OSIsoft Equipment: PI Vision 2020 Vulnerabilities: Cross-site Scripting, Incorrect Authorization 2. RISK EVALUATION Successful exploitation of these vulnerabilities may allow a remote attacker with...

7.7CVSS6.7AI score0.0091EPSS
Exploits0References5
NVD
NVD
added 2020/07/27 10:15 p.m.19 views

CVE-2020-10643

An authenticated remote attacker could use specially crafted URLs to send a victim using PI Vision 2019 mobile to a vulnerable web page due to a known issue in a third-party component...

6.5CVSS6.5AI score0.00951EPSS
Exploits0References1
Prion
Prion
added 2020/07/27 10:15 p.m.20 views

Design/Logic Flaw

An authenticated remote attacker could use specially crafted URLs to send a victim using PI Vision 2019 mobile to a vulnerable web page due to a known issue in a third-party component...

3.5CVSS5.8AI score0.00951EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder