CVE Tools

osisoft

ICS / OT / IoTUScommercial

30

Cumulative CVEs

11

Monthly snapshots

#48

Peak rank

Top products

pi vision2 pi web api1

Latest CVEs

The 15 most recently published vulnerabilities affecting osisoft.

CVE-2020-25167OSIsoft PI Vision Incorrect Authorization4.9Apr 18, 2022
CVE-2020-25163OSIsoft PI Vision Cross-site Scripting7.7Apr 18, 2022
CVE-2021-43549OSIsoft PI Web API6.9Nov 18, 2021
CVE-2021-43553OSIsoft PI Vision3.1Nov 17, 2021
CVE-2021-43551OSIsoft PI Vision6.5Nov 17, 2021
CVE-2020-10643OSIsoft PI System6.5Jul 27, 2020
CVE-2020-10614In OSIsoft PI System multiple products and versions, an authenticated remote attacker with write access to PI Vision databases could inject code into a display. Unauthorized information disclosure,...4.8Jul 24, 2020
CVE-2020-10604In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could crash PI Network Manager service through specially crafted requests. This can result in blocking connec...7.5Jul 24, 2020
CVE-2020-10600OSIsoft PI System5.9Jul 24, 2020
CVE-2020-10606In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by affected PI System software. This exploitation can result in unauthorized information ...7.8Jul 24, 2020
CVE-2020-10608In OSIsoft PI System multiple products and versions, a local attacker can plant a binary and bypass a code integrity check for loading PI System libraries. This exploitation can target another loca...7.8Jul 24, 2020
CVE-2020-10610In OSIsoft PI System multiple products and versions, a local attacker can modify a search path and plant a binary to exploit the affected PI System software to take control of the local computer at...7.8Jul 24, 2020
CVE-2020-12021In OSIsoft PI Web API 2019 Patch 1 (1.12.0.6346) and all previous versions, the affected product is vulnerable to a cross-site scripting attack, which may allow an attacker to remotely execute arbi...9.0Jun 23, 2020
CVE-2019-18244In OSIsoft PI System multiple products and versions, a local attacker could view sensitive information in log files when service accounts are customized during installation or upgrade of PI Vision....4.7Jan 15, 2020
CVE-2019-18273OSIsoft PI Vision, PI Vision 2017 R2 and PI Vision 2017 R2 SP1. The affected product is vulnerable to cross-site scripting, which may allow invalid input to be introduced.4.8Jan 15, 2020