PT-2017-18005 · Osisoft · Osisoft Pi Server

Published

2017-08-25

Updated

2019-10-09

CVE-2017-7930

CVSS v3.1

7.4

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions OSIsoft PI Server 2017 PI Data Archive versions prior to 2017

Description An issue with improper authentication was found, which involves protocol flaws that could expose change records and allow a malicious party to spoof a server.

Recommendations For versions prior to 2017, update to version 2017 or later to resolve the issue.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2017-7930

Affected Products

Osisoft Pi Server

PT-2017-18005 · Osisoft · Osisoft Pi Server

CVE-2017-7930

Weakness Enumeration

Related Identifiers

Affected Products

References · 4