CVE Vulnerabilities

CVE-2009-0209

Published: Oct 01, 2009 | Modified: Oct 11, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

PI Server in OSIsoft PI System before 3.4.380.x does not properly use encryption in the default authentication process, which allows remote attackers to read or modify information in databases via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Pi_server Osisoft 2.4 2.4
Pi_server Osisoft 2.6 2.6
Pi_server Osisoft 3.4.363.97 3.4.363.97
Pi_server Osisoft 3.4.370 3.4.370
Pi_server Osisoft * 3.4.375.99
Pi_server Osisoft 3.4.375.99 3.4.375.99

References