PT-2022-8708 · Osisoft · Osisoft Pi Vision 2020

Published

2022-04-18

·

Updated

2022-04-26

·

CVE-2020-25167

CVSS v3.1

6.5

Medium

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions OSIsoft PI Vision 2020 versions prior to 3.5.0
Description The issue could disclose information to a user with insufficient privileges for an AF attribute.
Recommendations For OSIsoft PI Vision 2020 versions prior to 3.5.0, update to version 3.5.0 or later to resolve the issue.

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-863

Related Identifiers

CVE-2020-25167

Affected Products

Osisoft Pi Vision 2020