NVD

Id
82216  
Name
CVE-2017-5153  
Description
An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials.  
Reject
 
CVSS Version
2  
CVSS Score
2.1  
Severity
Low  
CVSS Base Score
2.1  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-03-18  
Published
2017-02-13  
Modified Date
2017-03-16  
Seq
2017-5153  

Actions

Related NVD References

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
65925 JVNDB-2017-002264 OSIsoft PI Coresight および PI Web API における情報を公開される脆弱性 OSIsoft PI Coresight および PI Web API には、情報を公開される脆弱性が存在します。 CVE-2017-5153 CVE-2017-5153 82216 2.1 7.8 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-002264.html 2017-01-10 2017-04-06 View