A Cross-Site Scripting issue was discovered in OSIsoft PI Integrator for Business Analytics before 2016 R2, PI Integrator for Microsoft Azure before 2016 R2 SP1, and PI Integrator for SAP HANA before 2017. An attacker may be able to upload a malicious script that attempts to redirect users to a malicious web site.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/100212 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-17-220-01 | Mitigation Third Party Advisory US Government Resource |
https://techsupport.osisoft.com/Troubleshooting/Alerts/AL00324 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2017-08-14T16:00:00
Updated: 2017-08-15T09:57:01
Reserved: 2017-06-14T00:00:00
Link: CVE-2017-9655
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-08-14T16:29:00.287
Modified: 2017-08-23T19:23:02.230
Link: CVE-2017-9655
JSON object: View
Redhat Information
No data.
CWE