First published: Wed Mar 14 2018(Updated: )
An Information Exposure issue was discovered in OSIsoft PI Vision versions 2017 and prior. The server response header and referrer-policy response header each provide unintended information disclosure.
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
OSIsoft PI Vision | <=2017 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2018-7496.
The affected software is OSIsoft PI Vision versions 2017 and prior.
The severity of CVE-2018-7496 is medium, with a CVSS score of 5.3.
CVE-2018-7496 is an Information Exposure issue in OSIsoft PI Vision that results in unintended information disclosure through server response header and referrer-policy response header.
To fix CVE-2018-7496, it is recommended to update to a version of OSIsoft PI Vision that is later than 2017.