2 matches found
CVE-2017-5153
The CVE-2017-5153 issue affects OSIsoft PI Coresight 2016 R2 and earlier, and PI Web API 2016 R2 when deployed with the PI AF Services 2016 R2 integrated installer. It is an information exposure vulnerability through server log files that may allow exposure of service account passwords, potential...
CVE-2017-9641
The CVE-2017-9641 CSRF vulnerability affects OSIsoft PI Coresight 2016 R2 (and earlier per ICS advisory) and could allow unauthorized access to the PI System. Root cause is a Cross‑Site Request Forgery flaw in PI Coresight that enables actions on behalf of an authenticated user. Impact described ...