CVE-2018-7529

A Deserialization of Untrusted Data issue was discovered in OSIsoft PI Data Archive versions 2017 and prior. Unauthenticated users may modify deserialized data to send custom requests that crash the server.
References
Link Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-072-02 Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/103399 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:osisoft:pi_data_archive:*:*:*:*:*:*:*:*
cpe:2.3:a:osisoft:pi_data_archive:2017:r2:*:*:*:*:*:*

Information

Published : 2018-03-14 06:29

Updated : 2019-10-09 11:42


NVD link : CVE-2018-7529

Mitre link : CVE-2018-7529

Products Affected
No products.
CWE
CWE-502

Deserialization of Untrusted Data