cnvd - cnvd-2017-00496

CNVD-2017-00496

Vulnerability from cnvd - Published: 2017-01-17

Title

OSIsoft PI Coresight和PI Web API信息泄露漏洞

Description

OSIsoft PI Coresight是一套基于Web用于安全访问PI System数据的工具，PI Web API是一款提供对PI System数据访问的REST服务。 OSIsoft PI Coresight和PI Web API存在安全漏洞，允许攻击者可利用该漏洞提交特殊的请求获取敏感信息。

Severity

中

Patch Name

OSIsoft PI Coresight和PI Web API信息泄露漏洞的补丁

Patch Description

OSIsoft PI Coresight是一套基于Web用于安全访问PI System数据的工具，PI Web API是一款提供对PI System数据访问的REST服务。 OSIsoft PI Coresight和PI Web API存在安全漏洞，允许攻击者可利用该漏洞提交特殊的请求获取敏感信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全补丁以修复该漏洞： https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00312

Reference

http://www.securityfocus.com/bid/95355

Impacted products

Name
['OSISoft PI Web API 2016 R2', 'OSISoft PI Coresight 2016 0', 'OSISoft PI Coresight 2015 0', 'OSISoft PI Coresight 2014 0', 'OSISoft PI Coresight 2013 0', 'OSISoft PI Coresight 2012 0', 'OSISoft PI Coresight 1.0']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "95355"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-5153"
    }
  },
  "description": "OSIsoft PI Coresight\u662f\u4e00\u5957\u57fa\u4e8eWeb\u7528\u4e8e\u5b89\u5168\u8bbf\u95eePI System\u6570\u636e\u7684\u5de5\u5177\uff0cPI Web API\u662f\u4e00\u6b3e\u63d0\u4f9b\u5bf9PI System\u6570\u636e\u8bbf\u95ee\u7684REST\u670d\u52a1\u3002\r\n\r\nOSIsoft PI Coresight\u548cPI Web API\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u7684\u8bf7\u6c42\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002",
  "discovererName": "Vint Maggs from Savannah River Nuclear Solutions",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://techsupport.osisoft.com/Troubleshooting/Alerts/AL00312",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-00496",
  "openTime": "2017-01-17",
  "patchDescription": "OSIsoft PI Coresight\u662f\u4e00\u5957\u57fa\u4e8eWeb\u7528\u4e8e\u5b89\u5168\u8bbf\u95eePI System\u6570\u636e\u7684\u5de5\u5177\uff0cPI Web API\u662f\u4e00\u6b3e\u63d0\u4f9b\u5bf9PI System\u6570\u636e\u8bbf\u95ee\u7684REST\u670d\u52a1\u3002\r\n\r\nOSIsoft PI Coresight\u548cPI Web API\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u7684\u8bf7\u6c42\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "OSIsoft PI Coresight\u548cPI Web API\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "OSISoft PI Web API 2016 R2",
      "OSISoft PI Coresight 2016 0",
      "OSISoft PI Coresight  2015 0",
      "OSISoft PI Coresight  2014 0",
      "OSISoft PI Coresight  2013 0",
      "OSISoft PI Coresight  2012 0",
      "OSISoft PI Coresight  1.0"
    ]
  },
  "referenceLink": "http://www.securityfocus.com/bid/95355",
  "serverity": "\u4e2d",
  "submitTime": "2017-01-13",
  "title": "OSIsoft PI Coresight\u548cPI Web API\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2017-5153 (GCVE-0-2017-5153)

Vulnerability from cvelistv5 – Published: 2017-02-13 21:00 – Updated: 2024-08-05 14:55

Summary

An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials.

Severity ?

No CVSS data available.

CWE

OSIsoft PI Coresight and PI Web API information exposure

Assigner

icscert

References

URL

Tags

	http://www.securityfocus.com/bid/95355	vdb-entryx_refsource_BID
	https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	OSIsoft PI Coresight and PI Web API	Affected: OSIsoft PI Coresight and PI Web API

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:55:34.943Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "95355",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/95355"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "OSIsoft PI Coresight and PI Web API",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "OSIsoft PI Coresight and PI Web API"
            }
          ]
        }
      ],
      "datePublic": "2017-02-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "OSIsoft PI Coresight and PI Web API information exposure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-02-14T10:57:01",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "name": "95355",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/95355"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "ID": "CVE-2017-5153",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "OSIsoft PI Coresight and PI Web API",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "OSIsoft PI Coresight and PI Web API"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "OSIsoft PI Coresight and PI Web API information exposure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "95355",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/95355"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2017-5153",
    "datePublished": "2017-02-13T21:00:00",
    "dateReserved": "2017-01-03T00:00:00",
    "dateUpdated": "2024-08-05T14:55:34.943Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-00496

CVE-2017-5153 (GCVE-0-2017-5153)

Tags

Sightings

Nomenclature