cvedb.io
CVE-2018-7500
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2018-03-14T18:29:00.500 · Last modified 2026-06-17T02:03:15.223

Summary

A Permissions, Privileges, and Access Controls issue was discovered in OSIsoft PI Web API versions 2017 R2 and prior. Privileges may be escalated, giving attackers access to the PI System via the service account.

Affected products

osisoft — pi_web_api

Does this affect you?

Add your gear to cvedb and we'll alert you only when osisoft ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.