#VU11118 Privilege escalation in OSIsoft PI Web API - CVE-2018-7500

Cybersecurity Help s.r.o.

Published: 2018-03-15

Vulnerability identifier: #VU11118

Vulnerability risk: Low

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-7500

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
OSIsoft PI Web API
Server applications / Database software

Vendor: OSIsoft

Description
The vulnerability allows a remote attacker to gain elevated privileges on the target system.

The weakness exists due to improper privileges and access controls. A remote attacker can escalate his privileges and access the PI System via the service account.

Mitigation
Install update from vendor's website.

Vulnerable software versions

OSIsoft PI Web API: All versions

External links
https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00336

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in OSIsoft PI Web API