You are here

Home

OSIsoft

OSIsoft PI Web API (ICSA-18-072-04)

The NCCIC has released an advisory on vulnerabilities in OSIsoft PI Vision API. PI Web API versions 2017 R2 and prior are affected. Successful exploitation of these vulnerabilities could allow escalated privileges and may allow remote code execution. OSIsoft recommends that users upgrade to PI Vision 2017 R2 Update 1 or PI AF Services 2017 R2 Update 1, which both address the PI Web API vulnerabilities. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of this vulnerability.

Tags: 
ics-cert OSIsoft

OSIsoft PI Vision (ICSA-18-072-03)

The NCCIC has released an advisory on vulnerabilities in OSIsoft PI Vision. PI Vision versions 2017 and prior are affected. Successful exploitation of these vulnerabilities could allow remote code execution and expose information. OSIsoft recommends that users upgrade to PI Vision 2017 R2 Update 1. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of this vulnerability. ICS-CERT.

 

Tags: 
ics-cert OSIsoft

OSIsoft PI Data Archive (ICSA-18-072-02)

The NCCIC has released an advisory on vulnerabilities in OSIsoft PI Data Archive. OSIsoft PI Data Archive versions 2016 R2 and prior are affected. Successful exploitation of these vulnerabilities could cause loss of network access to the device or allow escalated privileges that may result in gaining full control of the PI Data Archive server. OSIsoft recommends that customers upgrade to PI Data Archive 2017 R2. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of this vulnerability.

Tags: 
ics-cert OSIsoft
Subscribe to OSIsoft