Vulnerabilities > Osisoft > PI Vision > 2020
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-17 | CVE-2021-43551 | Cross-site Scripting vulnerability in Osisoft PI Vision 2017/2019/2020 A remote attacker with write access to PI Vision could inject code into a display. | 5.4 |
| 2021-11-17 | CVE-2021-43553 | Incorrect Authorization vulnerability in Osisoft PI Vision 2017/2019/2020 PI Vision could disclose information to a user with insufficient privileges for an AF attribute that is the child of another attribute and is configured as a Limits property. | 4.3 |