There is a vulnerability in AVEVA PI Asset Framework Client that could allow malicious code to execute on the PI System Explorer environment under the privileges of an interactive user that was socially engineered to import XML supplied by an attacker.
CVSS
No CVSS.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2024-06-12T21:04:26.635Z
Updated: 2024-07-03T18:32:56.636Z
Reserved: 2024-04-08T15:55:44.665Z
Link: CVE-2024-3467
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-06-12T21:15:50.617
Modified: 2024-06-13T18:36:09.010
Link: CVE-2024-3467
JSON object: View
Redhat Information
No data.
CWE