2019

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

osisoft

NVD

Published: 2020-01-15

Updated: 2020-10-19

Summary

OSIsoft PI Vision, All versions of PI Vision prior to 2019. The affected product is vulnerable to an improper access control, which may return unauthorized tag data when viewing analysis data reference attributes.

Vulnerable Configurations

Part	Description	Count
Application	Osisoft Osisoft PI Vision - Osisoft PI Vision 2017 Osisoft PI Vision 2019	5

References

https://www.us-cert.gov/ics/advisories/icsa-20-014-06