cvelistv5 - cve-2017-5153

CVE-2017-5153 (GCVE-0-2017-5153)

Vulnerability from cvelistv5 – Published: 2017-02-13 21:00 – Updated: 2024-08-05 14:55

Summary

Severity ?

No CVSS data available.

CWE

OSIsoft PI Coresight and PI Web API information exposure

Assigner

icscert

References

URL

	Vendor	Product	Version
	n/a	OSIsoft PI Coresight and PI Web API	Affected: OSIsoft PI Coresight and PI Web API

VAR-201702-0674

Vulnerability from variot - Updated: 2023-12-18 12:29

An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials. OSIsoft PI Coresight and PI Web API Contains an information disclosure vulnerability.Information may be disclosed via server log files. OSIsoft PI Coresight is a web-based tool for secure access to PI System data. An attacker can exploit this issue to obtain sensitive information and cause a denial-of-service condition

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201702-0674",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "pi web api",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "osisoft",
        "version": "2016-r2"
      },
      {
        "model": "pi coresight",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "osisoft",
        "version": "2016-r2"
      },
      {
        "model": "pi coresight",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "osisoft",
        "version": "20160"
      },
      {
        "model": "pi coresight",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "osisoft",
        "version": "20150"
      },
      {
        "model": "pi coresight",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "osisoft",
        "version": "20140"
      },
      {
        "model": "pi coresight",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "osisoft",
        "version": "20130"
      },
      {
        "model": "pi coresight",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "osisoft",
        "version": "20120"
      },
      {
        "model": "pi coresight",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "osisoft",
        "version": "1.0"
      },
      {
        "model": "pi coresight",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "osisoft",
        "version": "2016 r2"
      },
      {
        "model": "pi web api",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "osisoft",
        "version": "2016 r2 (pi af services 2016 r2 integrated install kit)"
      },
      {
        "model": "pi web api r2",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "osisoft",
        "version": "2016"
      },
      {
        "model": "pi coresight",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "osisoft",
        "version": "2016-r2"
      },
      {
        "model": "pi web api r2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "osisoft",
        "version": "20160"
      },
      {
        "model": null,
        "scope": "eq",
        "trust": 0.2,
        "vendor": "pi coresight",
        "version": "*"
      },
      {
        "model": "2016-r2",
        "scope": null,
        "trust": 0.2,
        "vendor": "pi web api",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "e7887e65-5724-47c1-8179-e1966e9bf69c"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "db": "BID",
        "id": "95355"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5153"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:osisoft:pi_web_api:2016-r2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:osisoft:pi_coresight:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2016-r2",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2017-5153"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Vint Maggs from Savannah River Nuclear Solutions",
    "sources": [
      {
        "db": "BID",
        "id": "95355"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ],
    "trust": 0.9
  },
  "cve": "CVE-2017-5153",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 3.9,
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "LOW",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Local",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "None",
            "baseScore": 2.1,
            "confidentialityImpact": "Partial",
            "exploitabilityScore": null,
            "id": "CVE-2017-5153",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Low",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2017-00496",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "IVD",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "e7887e65-5724-47c1-8179-e1966e9bf69c",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.2,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.9 [IVD]"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.8,
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Local",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 7.8,
            "baseSeverity": "High",
            "confidentialityImpact": "High",
            "exploitabilityScore": null,
            "id": "CVE-2017-5153",
            "impactScore": null,
            "integrityImpact": "High",
            "privilegesRequired": "Low",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2017-5153",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2017-00496",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201701-177",
            "trust": 0.6,
            "value": "LOW"
          },
          {
            "author": "IVD",
            "id": "e7887e65-5724-47c1-8179-e1966e9bf69c",
            "trust": 0.2,
            "value": "LOW"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "e7887e65-5724-47c1-8179-e1966e9bf69c"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5153"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials. OSIsoft PI Coresight and PI Web API Contains an information disclosure vulnerability.Information may be disclosed via server log files. OSIsoft PI Coresight is a web-based tool for secure access to PI System data. \nAn attacker can exploit this issue to obtain sensitive information and cause a denial-of-service condition",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2017-5153"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "db": "BID",
        "id": "95355"
      },
      {
        "db": "IVD",
        "id": "e7887e65-5724-47c1-8179-e1966e9bf69c"
      }
    ],
    "trust": 2.61
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2017-5153",
        "trust": 3.5
      },
      {
        "db": "BID",
        "id": "95355",
        "trust": 2.5
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-17-010-01",
        "trust": 1.9
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177",
        "trust": 0.8
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-17-010-01A",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002264",
        "trust": 0.8
      },
      {
        "db": "IVD",
        "id": "E7887E65-5724-47C1-8179-E1966E9BF69C",
        "trust": 0.2
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "e7887e65-5724-47c1-8179-e1966e9bf69c"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "db": "BID",
        "id": "95355"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5153"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ]
  },
  "id": "VAR-201702-0674",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "IVD",
        "id": "e7887e65-5724-47c1-8179-e1966e9bf69c"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      }
    ],
    "trust": 1.3715278
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "ICS"
        ],
        "sub_category": null,
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "e7887e65-5724-47c1-8179-e1966e9bf69c"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      }
    ]
  },
  "last_update_date": "2023-12-18T12:29:50.269000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.osisoft.com/default.aspx"
      },
      {
        "title": "Patch for OSIsoft PI Coresight and PI Web API Information Disclosure Vulnerability",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/88081"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-532",
        "trust": 1.8
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5153"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.2,
        "url": "http://www.securityfocus.com/bid/95355"
      },
      {
        "trust": 1.6,
        "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-010-01"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5153"
      },
      {
        "trust": 0.8,
        "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-010-01a"
      },
      {
        "trust": 0.8,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-5153"
      },
      {
        "trust": 0.3,
        "url": "https://www.osisoft.com/default.aspx"
      },
      {
        "trust": 0.3,
        "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-010-01 "
      },
      {
        "trust": 0.3,
        "url": "https://techsupport.osisoft.com/troubleshooting/alerts/al00312 "
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "db": "BID",
        "id": "95355"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5153"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "IVD",
        "id": "e7887e65-5724-47c1-8179-e1966e9bf69c"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "db": "BID",
        "id": "95355"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-5153"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-01-17T00:00:00",
        "db": "IVD",
        "id": "e7887e65-5724-47c1-8179-e1966e9bf69c"
      },
      {
        "date": "2017-01-17T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "date": "2017-01-10T00:00:00",
        "db": "BID",
        "id": "95355"
      },
      {
        "date": "2017-04-06T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      },
      {
        "date": "2017-02-13T21:59:02.690000",
        "db": "NVD",
        "id": "CVE-2017-5153"
      },
      {
        "date": "2017-01-12T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-01-17T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "date": "2017-01-12T00:14:00",
        "db": "BID",
        "id": "95355"
      },
      {
        "date": "2017-04-06T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2017-002264"
      },
      {
        "date": "2017-03-16T15:27:41.143000",
        "db": "NVD",
        "id": "CVE-2017-5153"
      },
      {
        "date": "2017-01-12T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "local",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "OSIsoft PI Coresight and PI Web API Information Disclosure Vulnerability",
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-00496"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ],
    "trust": 1.2
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "information disclosure",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201701-177"
      }
    ],
    "trust": 0.6
  }
}

GHSA-GP6C-FP2M-24Q3

Vulnerability from github – Published: 2022-05-17 02:55 – Updated: 2022-05-17 02:55

Details

Severity ?

7.8 (High)


                  
                    CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2017-5153"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-532"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2017-02-13T21:59:00Z",
    "severity": "HIGH"
  },
  "details": "An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials.",
  "id": "GHSA-gp6c-fp2m-24q3",
  "modified": "2022-05-17T02:55:19Z",
  "published": "2022-05-17T02:55:19Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5153"
    },
    {
      "type": "WEB",
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/95355"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CNVD-2017-00496

Vulnerability from cnvd - Published: 2017-01-17

Title

OSIsoft PI Coresight和PI Web API信息泄露漏洞

Description

OSIsoft PI Coresight是一套基于Web用于安全访问PI System数据的工具，PI Web API是一款提供对PI System数据访问的REST服务。 OSIsoft PI Coresight和PI Web API存在安全漏洞，允许攻击者可利用该漏洞提交特殊的请求获取敏感信息。

Severity

中

Patch Name

OSIsoft PI Coresight和PI Web API信息泄露漏洞的补丁

Patch Description

OSIsoft PI Coresight是一套基于Web用于安全访问PI System数据的工具，PI Web API是一款提供对PI System数据访问的REST服务。 OSIsoft PI Coresight和PI Web API存在安全漏洞，允许攻击者可利用该漏洞提交特殊的请求获取敏感信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全补丁以修复该漏洞： https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00312

Reference

http://www.securityfocus.com/bid/95355

Impacted products

Name
['OSISoft PI Web API 2016 R2', 'OSISoft PI Coresight 2016 0', 'OSISoft PI Coresight 2015 0', 'OSISoft PI Coresight 2014 0', 'OSISoft PI Coresight 2013 0', 'OSISoft PI Coresight 2012 0', 'OSISoft PI Coresight 1.0']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "95355"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-5153"
    }
  },
  "description": "OSIsoft PI Coresight\u662f\u4e00\u5957\u57fa\u4e8eWeb\u7528\u4e8e\u5b89\u5168\u8bbf\u95eePI System\u6570\u636e\u7684\u5de5\u5177\uff0cPI Web API\u662f\u4e00\u6b3e\u63d0\u4f9b\u5bf9PI System\u6570\u636e\u8bbf\u95ee\u7684REST\u670d\u52a1\u3002\r\n\r\nOSIsoft PI Coresight\u548cPI Web API\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u7684\u8bf7\u6c42\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002",
  "discovererName": "Vint Maggs from Savannah River Nuclear Solutions",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://techsupport.osisoft.com/Troubleshooting/Alerts/AL00312",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-00496",
  "openTime": "2017-01-17",
  "patchDescription": "OSIsoft PI Coresight\u662f\u4e00\u5957\u57fa\u4e8eWeb\u7528\u4e8e\u5b89\u5168\u8bbf\u95eePI System\u6570\u636e\u7684\u5de5\u5177\uff0cPI Web API\u662f\u4e00\u6b3e\u63d0\u4f9b\u5bf9PI System\u6570\u636e\u8bbf\u95ee\u7684REST\u670d\u52a1\u3002\r\n\r\nOSIsoft PI Coresight\u548cPI Web API\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u7684\u8bf7\u6c42\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "OSIsoft PI Coresight\u548cPI Web API\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "OSISoft PI Web API 2016 R2",
      "OSISoft PI Coresight 2016 0",
      "OSISoft PI Coresight  2015 0",
      "OSISoft PI Coresight  2014 0",
      "OSISoft PI Coresight  2013 0",
      "OSISoft PI Coresight  2012 0",
      "OSISoft PI Coresight  1.0"
    ]
  },
  "referenceLink": "http://www.securityfocus.com/bid/95355",
  "serverity": "\u4e2d",
  "submitTime": "2017-01-13",
  "title": "OSIsoft PI Coresight\u548cPI Web API\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

FKIE_CVE-2017-5153

Vulnerability from fkie_nvd - Published: 2017-02-13 21:59 - Updated: 2025-04-20 01:37

Severity ?

7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
ics-cert@hq.dhs.gov	http://www.securityfocus.com/bid/95355	Third Party Advisory, VDB Entry
ics-cert@hq.dhs.gov	https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/95355	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01	Third Party Advisory, US Government Resource

Impacted products

	Vendor	Product	Version
	osisoft	pi_coresight	*
	osisoft	pi_web_api	2016-r2

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:osisoft:pi_coresight:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "11887654-16DB-483B-9F0F-F5332B0BD6E4",
              "versionEndIncluding": "2016-r2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:osisoft:pi_web_api:2016-r2:*:*:*:*:*:*:*",
              "matchCriteriaId": "7530DB5E-ABD1-4D03-9871-4FC7EEC3A67B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials."
    },
    {
      "lang": "es",
      "value": "Ha sido descubierto un problema en OSIsoft PI Coresight 2016 R2 y versiones anteriores y PI Web API 2016 R2 cuando se implementa utilizando el kit de instalaci\u00f3n integrado PI AF Services 2016 R2. Se ha identificado una vulnerabilidad de exposici\u00f3n de informaci\u00f3n a trav\u00e9s de los archivos de inicio de sesi\u00f3n del servidor, lo que puede permitir que las contrase\u00f1as de la cuenta de servicio queden expuestas para los servicios afectados, potencialmente conduciendo al cierre no autorizado de los servicios PI afectados, as\u00ed como a la posible reutilizaci\u00f3n de credenciales de dominio."
    }
  ],
  "id": "CVE-2017-5153",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 2.1,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-02-13T21:59:02.690",
  "references": [
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/95355"
    },
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/95355"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01"
    }
  ],
  "sourceIdentifier": "ics-cert@hq.dhs.gov",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-532"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

ICSA-17-010-01A

Vulnerability from csaf_cisa - Published: 2017-01-10 00:00 - Updated: 2017-07-11 00:00

Summary

OSIsoft PI Coresight and PI Web API (Update A)

Notes

CISA Disclaimer

This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov

Legal Notice

All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.

Risk evaluation

Vendor: OSIsoft

Recommended Practices

NCCIC/ICS-CERT recommends that users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should:

Recommended Practices

ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.

Recommended Practices

ICS-CERT also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

Recommended Practices

Additional mitigation guidance and recommended practices are publicly available in the ICS -CERT Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies, that is available for download from the ICS-CERT web site.

Recommended Practices

Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to ICS-CERT for tracking and correlation against other incidents.

Exploitability

No known public exploits specifically target this vulnerability. Not remotely exploitable. Low skill level is needed to exploit.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "Vint Maggs"
        ],
        "organization": "Savannah River Nuclear Solutions",
        "summary": "reporting this issue to OSIsoft"
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited",
      "tlp": {
        "label": "WHITE",
        "url": "https://us-cert.cisa.gov/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
        "title": "CISA Disclaimer"
      },
      {
        "category": "legal_disclaimer",
        "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
        "title": "Legal Notice"
      },
      {
        "category": "summary",
        "text": "Vendor: OSIsoft",
        "title": "Risk evaluation"
      },
      {
        "category": "general",
        "text": "NCCIC/ICS-CERT recommends that users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should:",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "ICS-CERT also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Additional mitigation guidance and recommended practices are publicly available in the ICS -CERT Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies, that is available for download from the ICS-CERT web site.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to ICS-CERT for tracking and correlation against other incidents.",
        "title": "Recommended Practices"
      },
      {
        "category": "other",
        "text": "No known public exploits specifically target this vulnerability. Not remotely exploitable. Low skill level is needed to exploit.",
        "title": "Exploitability"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
      "name": "CISA",
      "namespace": "https://www.cisa.gov/"
    },
    "references": [
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-17-010-01A JSON",
        "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2017/icsa-17-010-01a.json"
      },
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-17-010-01A Web Version",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-17-010-01a"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-17-010-01a"
      }
    ],
    "title": "OSIsoft PI Coresight and PI Web API (Update A)",
    "tracking": {
      "current_release_date": "2017-07-11T00:00:00.000000Z",
      "generator": {
        "engine": {
          "name": "CISA CSAF Generator",
          "version": "1.0.0"
        }
      },
      "id": "ICSA-17-010-01A",
      "initial_release_date": "2017-01-10T00:00:00.000000Z",
      "revision_history": [
        {
          "date": "2017-01-10T00:00:00.000000Z",
          "legacy_version": "Initial",
          "number": "1",
          "summary": "ICSA-17-010-01 OSIsoft PI Coresight and PI Web API Module Install Kit Vulnerability"
        },
        {
          "date": "2017-07-11T00:00:00.000000Z",
          "legacy_version": "A",
          "number": "2",
          "summary": "ICSA-17-010-01A OSIsoft PI Coresight and PI Web API (Update A)"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "2016 R2 (when deployed using the PI AF Services 2016 R2 integrated install kit)",
                "product": {
                  "name": "PI Web API: 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit",
                  "product_id": "CSAFPID-0001"
                }
              }
            ],
            "category": "product_name",
            "name": "PI Web API"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c 2016 R2",
                "product": {
                  "name": "PI Coresight: 2016 R2 and earlier versions",
                  "product_id": "CSAFPID-0002"
                }
              }
            ],
            "category": "product_name",
            "name": "PI Coresight"
          }
        ],
        "category": "vendor",
        "name": "OSIsoft LLC"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-5153",
      "cwe": {
        "id": "CWE-533",
        "name": "DEPRECATED: Information Exposure Through Server Log Files"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials.CVE-2017-5153 has been assigned to this vulnerability. A CVSS v3 base score of 6.1 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H).",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "web.nvd.nist.gov",
          "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5153"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "OSIsoft has released new versions of PI Vision 2017, PI Web API 2017, and PI AF Services 2017 SP1 install kit. These new versions address this issue for PI Coresight, PI Web API, and the PI AF Services integrated install kit.",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        },
        {
          "category": "mitigation",
          "details": "OSIsoft recommends that users follow the workaround detailed in the security bulletin until a software update can be applied. The security bulletin with detailed workaround can be found at:",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00312"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ]
    }
  ]
}

GSD-2017-5153

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2017-5153

Aliases

CVE-2017-5153

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2017-5153",
    "description": "An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials.",
    "id": "GSD-2017-5153"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2017-5153"
      ],
      "details": "An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials.",
      "id": "GSD-2017-5153",
      "modified": "2023-12-13T01:21:13.336759Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "ics-cert@hq.dhs.gov",
        "ID": "CVE-2017-5153",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "OSIsoft PI Coresight and PI Web API",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "OSIsoft PI Coresight and PI Web API"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "OSIsoft PI Coresight and PI Web API information exposure"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "95355",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/95355"
          },
          {
            "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01",
            "refsource": "MISC",
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:osisoft:pi_web_api:2016-r2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:osisoft:pi_coresight:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2016-r2",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "ID": "CVE-2017-5153"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "An issue was discovered in OSIsoft PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed using the PI AF Services 2016 R2 integrated install kit. An information exposure through server log files vulnerability has been identified, which may allow service account passwords to become exposed for the affected services, potentially leading to unauthorized shutdown of the affected PI services as well as potential reuse of domain credentials."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-532"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01",
              "refsource": "MISC",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-010-01"
            },
            {
              "name": "95355",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/95355"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2017-03-16T15:27Z",
      "publishedDate": "2017-02-13T21:59Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2017-5153 (GCVE-0-2017-5153)

VAR-201702-0674

GHSA-GP6C-FP2M-24Q3

CNVD-2017-00496

FKIE_CVE-2017-5153

ICSA-17-010-01A

GSD-2017-5153

Tags

Sightings

Nomenclature