An Improper Authorization issue was discovered in OSIsoft PI Integrator for Business Analytics before 2016 R2, PI Integrator for Microsoft Azure before 2016 R2 SP1, and PI Integrator for SAP HANA before 2017. An attacker is able to gain privileged access to the system while unauthorized.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/100212 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-17-220-01 | Mitigation Third Party Advisory US Government Resource |
https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00324 | Vendor Advisory |
http://www.securityfocus.com/bid/100212 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-17-220-01 | Mitigation Third Party Advisory US Government Resource |
https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00324 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 03:36
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/100212 - Third Party Advisory, VDB Entry | |
References | () https://ics-cert.us-cert.gov/advisories/ICSA-17-220-01 - Mitigation, Third Party Advisory, US Government Resource | |
References | () https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00324 - Vendor Advisory |
Information
Published : 2017-08-14 16:29
Updated : 2024-11-21 03:36
NVD link : CVE-2017-9653
Mitre link : CVE-2017-9653
CVE.ORG link : CVE-2017-9653
JSON object : View
Products Affected
osisoft
- pi_integrator_for_microsoft_azure
- pi_integrator_for_sap_hana
- pi_integrator_for_business_analystics
CWE
CWE-863
Incorrect Authorization