Back to search
CVE-2018-19006
Published: Apr 8, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
OSIsoft PI Vision, versions PI Vision 2017, and PI Vision 2017 R2, The application contains a cross-site scripting vulnerability where displays that reference AF elements and attributes containing JavaScript are affected. This vulnerability requires the ability of authorized AF users to store JavaScript in AF elements and attributes.
| Vendor | Product | Versions |
|---|---|---|
OSIsoft | PI Vision | affected PI Vision 2017affected and PI Vision 2017 R2 |
Weaknesses (CWE)
References
https://ics-cert.us-cert.gov/advisories/ICSA-19-043-01
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now