CVE-2019-18275
First published: Wed Jan 15 2020(Updated: )
OSIsoft PI Vision, All versions of PI Vision prior to 2019. The affected product is vulnerable to an improper access control, which may return unauthorized tag data when viewing analysis data reference attributes.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OSIsoft | <2019 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-18275?
CVE-2019-18275 is categorized as a medium severity vulnerability due to improper access control.
How do I fix CVE-2019-18275?
To fix CVE-2019-18275, upgrade to a version of PI Vision that is 2019 or later.
What versions of PI Vision are affected by CVE-2019-18275?
All versions of PI Vision prior to 2019 are affected by CVE-2019-18275.
What type of vulnerability is CVE-2019-18275?
CVE-2019-18275 is an improper access control vulnerability that may expose unauthorized tag data.
What potential impact does CVE-2019-18275 have on users?
CVE-2019-18275 can lead to unauthorized access to sensitive analysis data reference attributes.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/osisoft
- canonical/osisoft