2 matches found
CVE-2019-13516
CVE-2019-13516 affects OSIsoft PI Web API (and prior versions). The issue is a cross-site request forgery protection setting that has not taken effect, leaving the PI Web API vulnerable to direct attack. Affected products include PI Web API 2018 and earlier versions. Exploitation details are not ...
OSIsoft PI Web API
1. EXECUTIVE SUMMARY CVSS v3 8.5 ATTENTION: Exploitable remotely Vendor: OSIsoft LLC Equipment: OSIsoft PI Web API Vulnerabilities: Inclusion of Sensitive Information in Log Files, Protection Mechanism Failure 2. RISK EVALUATION Successful exploitation of these vulnerabilities may allow direct...