HIGH🇬🇧 English

CVE-2020-10604

CVSS 7.5v3.1pub. 2020-07-25upd. 2024-11-21

In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could crash PI Network Manager service through specially crafted requests. This can result in blocking connections and queries to PI Data Archive.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Osisoft Pi Data Archive

    APP
    Osisoft
    2018
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth Bypass
CWE
Referencje

Powiązane podatności

CVE-2020-10610HIGH7.8ten sam produkt

In OSIsoft PI System multiple products and versions, a local attacker can modify a search path and plant a bin...

CVE-2020-10606HIGH7.8ten sam produkt

In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by...

CVE-2020-10608HIGH7.8ten sam produkt

In OSIsoft PI System multiple products and versions, a local attacker can plant a binary and bypass a code int...

CVE-2018-7533HIGH7.8ten sam produkt

An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Inse...

CVE-2018-7529HIGH7.5ten sam produkt

A Deserialization of Untrusted Data issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. U...