CVE-2018-7533
First published: Wed Mar 14 2018(Updated: )
An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Insecure default configuration may allow escalation of privileges that gives the actor full control over the system.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OSIsoft PI Data Archive | <=2017 | |
| OSIsoft PI Data Archive | =2017-r2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-7533?
CVE-2018-7533 is an Incorrect Default Permissions issue discovered in OSIsoft PI Data Archive versions 2017 and prior.
How does CVE-2018-7533 affect OSIsoft PI Data Archive?
CVE-2018-7533 may allow escalation of privileges, giving the attacker full control over the system.
What is the severity of CVE-2018-7533?
CVE-2018-7533 has a severity level of 7.8 (high).
How can I fix CVE-2018-7533 in OSIsoft PI Data Archive?
To fix CVE-2018-7533, it is recommended to update OSIsoft PI Data Archive to a version later than 2017.
Where can I find more information about CVE-2018-7533?
Additional information about CVE-2018-7533 can be found at the following references: [http://www.securityfocus.com/bid/103399](http://www.securityfocus.com/bid/103399) and [https://ics-cert.us-cert.gov/advisories/ICSA-18-072-02](https://ics-cert.us-cert.gov/advisories/ICSA-18-072-02).
- collector/nvd-index
- agent/severity
- agent/author
- agent/type
- agent/weakness
- agent/references
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/osisoft
- canonical/osisoft pi data archive
- version/osisoft pi data archive/2017
- version/osisoft pi data archive/2017-r2