PT-2017-18005 · Osisoft · Osisoft Pi Server

Publicado

2017-08-25

Atualizado

2019-10-09

CVE-2017-7930

CVSS v3.1

7.4

Alta

Vetor

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions OSIsoft PI Server 2017 PI Data Archive versions prior to 2017

Description An issue with improper authentication was found, which involves protocol flaws that could expose change records and allow a malicious party to spoof a server.

Recommendations For versions prior to 2017, update to version 2017 or later to resolve the issue.

Correção

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-287

Identificadores relacionados

CVE-2017-7930

Produtos afetados

Osisoft Pi Server

PT-2017-18005 · Osisoft · Osisoft Pi Server

CVE-2017-7930

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4