Vulnerabilities > CVE-2020-10600 - NULL Pointer Dereference vulnerability in Osisoft PI Data Archive 2018/2019/3.4.430.460

047910
CVSS 4.9 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
PARTIAL

Summary

An authenticated remote attacker could crash PI Archive Subsystem when the subsystem is working under memory pressure. This can result in blocking queries to PI Data Archive (2018 SP2 and prior versions).

Vulnerable Configurations

Part Description Count
Application
Osisoft
4

Common Weakness Enumeration (CWE)