Main Vulnerability Database SB2017061506

SB2017061506 - Two vulnerabilities in OSIsoft PI Data Archive

Published: June 15, 2017

Security Bulletin ID SB2017061506

Severity

Low

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Improper authentication (CVE-ID: CVE-2017-7930)

The vulnerability allows a remote attacker to perform spoofing attack on the target system.

The weakness exists due to protocol flaws in PI Data Archive. A remote attacker can access change records and spoof a PI Server within a collective.

Successful exploitation results in server spoofing.

2) Improper authentication (CVE-ID: CVE-2017-7934)

The vulnerability allows a remote attacker to gain access to the system.

The weakness exists due to a flaw in PI Network Manager using older protocol versions. A remote attacker can authenticate with a server and then cause PI Network Manager to behave in an undefined manner.

Successful exploitation results may result in denial of service

Remediation

Install update from vendor's website.

References

https://ics-cert.us-cert.gov/advisories/ICSA-17-164-02