First published: Thu Oct 01 2009(Updated: )
PI Server in OSIsoft PI System before 3.4.380.x does not properly use encryption in the default authentication process, which allows remote attackers to read or modify information in databases via unspecified vectors.
Credit: cret@cert.org
Affected Software | Affected Version | How to fix |
---|---|---|
Osisoft Pi Server | =3.4.363.97 | |
Osisoft Pi Server | =3.4.375.99-sp2 | |
Osisoft Pi Server | =3.4.370 | |
Osisoft Pi Server | <=3.4.375.99 | |
Osisoft Pi Server | =2.6 | |
Osisoft Pi Server | =2.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.