HIGHπŸ‡΅πŸ‡± Wersja polska

CVE-2020-10604

CVSS 7.5v3.1pub. 2020-07-25upd. 2024-11-21

In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could crash PI Network Manager service through specially crafted requests. This can result in blocking connections and queries to PI Data Archive.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Osisoft Pi Data Archive

    APP
    Osisoft
    2018
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2020-10610HIGH7.8ten sam produkt

In OSIsoft PI System multiple products and versions, a local attacker can modify a search path and plant a bin...

CVE-2020-10606HIGH7.8ten sam produkt

In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by...

CVE-2020-10608HIGH7.8ten sam produkt

In OSIsoft PI System multiple products and versions, a local attacker can plant a binary and bypass a code int...

CVE-2018-7533HIGH7.8ten sam produkt

An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Inse...

CVE-2018-7529HIGH7.5ten sam produkt

A Deserialization of Untrusted Data issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. U...

CVE-2020-10604 β€” Osisoft β€” Pi Data Archive β€” HIGH β€” CVSS 7.5 | CVEbaza.pl