Multiple vulnerabilities in OSIsoft PI Data Archive
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 3 |
| CVE-ID | CVE-2018-7529 CVE-2018-7533 CVE-2018-7531 |
| CWE-ID | CWE-502 CWE-276 CWE-20 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
OSIsoft PI Data Archive Server applications / Database software |
| Vendor | OSIsoft |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
1) Deserialization of untrusted data
EUVDB-ID: #VU11112
Risk: Low
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2018-7529
CWE-ID:
CWE-502 - Deserialization of Untrusted Data
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker can cause DoS condition on the target system.
The weakness exists due to deserialization of untrusted data. A remote attacker can modify deserialized data, send specially crafted custom requests and cause the server to crash.
Update to version 2017 R2.
Vulnerable software versionsOSIsoft PI Data Archive: All versions
External linkshttp://techsupport.osisoft.com/Troubleshooting/Alerts/AL00339
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Privilege escalation
EUVDB-ID: #VU11113
Risk: Low
CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2018-7533
CWE-ID:
CWE-276 - Incorrect Default Permissions
Exploit availability: No
DescriptionThe vulnerability allows a local attacker can gain elevated privileges on the target system.
The weakness exists due to dinsecure default configuration. A remote attacker can gain elevated privileges and gain full control over the system.
Update to version 2017 R2.
Vulnerable software versionsOSIsoft PI Data Archive: All versions
External linkshttp://techsupport.osisoft.com/Troubleshooting/Alerts/AL00339
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
The attacker would have to login to the system and perform certain actions in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Improper input validation
EUVDB-ID: #VU11114
Risk: Low
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2018-7531
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker can cause DoS condition on the target system.
The weakness exists due to insufficient validation of user-supplied input. A remote attacker can use unvalidated custom requests and cause the server to crash.
Update to version 2017 R2.
Vulnerable software versionsOSIsoft PI Data Archive: All versions
External linkshttp://techsupport.osisoft.com/Troubleshooting/Alerts/AL00339
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
