Vulnerabilities > Aveva > PI Server

DATE CVE VULNERABILITY TITLE RISK
2024-01-18 CVE-2023-31274 Missing Release of Resource after Effective Lifetime vulnerability in Aveva PI Server 2018/2023
AVEVA PI Server versions 2023 and 2018 SP3 P05 and prior contain a vulnerability that could allow an unauthenticated user to cause the PI Message Subsystem of a PI Server to consume available memory resulting in throttled processing of new PI Data Archive events and a partial denial-of-service condition.
network
low complexity
aveva CWE-772
5.3
2024-01-18 CVE-2023-34348 Improper Handling of Exceptional Conditions vulnerability in Aveva PI Server 2018/2023
AVEVA PI Server versions 2023 and 2018 SP3 P05 and prior contain a vulnerability that could allow an unauthenticated user to remotely crash the PI Message Subsystem of a PI Server, resulting in a denial-of-service condition.
network
low complexity
aveva CWE-755
7.5