Osisoft Pi Data Archive — known CVE vulnerabilities
Every CVE whose affected-product data names Osisoft Pi Data Archive, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2020-10610 — CVSS 7.8 (high): In OSIsoft PI System multiple products and versions, a local attacker can modify a search path and plant a binary to exploit the affected…
CVE-2018-7533 — CVSS 7.8 (high): An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Insecure default configuration…
CVE-2020-10606 — CVSS 7.8 (high): In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by affected PI System software…
CVE-2020-10608 — CVSS 7.8 (high): In OSIsoft PI System multiple products and versions, a local attacker can plant a binary and bypass a code integrity check for loading PI…
CVE-2020-10604 — CVSS 7.5 (high): In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could crash PI Network Manager service through…
CVE-2018-7529 — CVSS 7.5 (high): A Deserialization of Untrusted Data issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Unauthenticated users may…
CVE-2017-7930 — CVSS 7.4 (high): An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. PI Data Archive has…
CVE-2020-10600 — CVSS 5.9 (medium): An authenticated remote attacker could crash PI Archive Subsystem when the subsystem is working under memory pressure. This can result in…
CVE-2018-7531 — CVSS 5.9 (medium): An Improper Input Validation issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Unauthenticated users may use…
CVE-2017-7934 — CVSS 5.9 (medium): An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. PI Network Manager using…
CVE-2016-8365 — CVSS 5.5 (medium): OSIsoft PI System software (Applications using PI Asset Framework (AF) Client versions prior to PI AF Client 2016, Version 2.8.0…