Vulnerability Description
An Improper Authorization issue was discovered in OSIsoft PI Integrator for Business Analytics before 2016 R2, PI Integrator for Microsoft Azure before 2016 R2 SP1, and PI Integrator for SAP HANA before 2017. An attacker is able to gain privileged access to the system while unauthorized.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Osisoft | Pi Integrator For Business Analystics | 2016 |
| Osisoft | Pi Integrator For Microsoft Azure | 2016 |
| Osisoft | Pi Integrator For Sap Hana | 2016 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/100212Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-220-01MitigationThird Party AdvisoryUS Government Resource
- https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00324Vendor Advisory
- http://www.securityfocus.com/bid/100212Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-220-01MitigationThird Party AdvisoryUS Government Resource
- https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00324Vendor Advisory
FAQ
What is CVE-2017-9653?
CVE-2017-9653 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An Improper Authorization issue was discovered in OSIsoft PI Integrator for Business Analytics before 2016 R2, PI Integrator for Microsoft Azure before 2016 R2 SP1, and PI Integrator for SAP HANA befo...
How severe is CVE-2017-9653?
CVE-2017-9653 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2017-9653?
Check the references section above for vendor advisories and patch information. Affected products include: Osisoft Pi Integrator For Business Analystics, Osisoft Pi Integrator For Microsoft Azure, Osisoft Pi Integrator For Sap Hana.