CVE-2021-43553: OSIsoft PI Vision

Q: What is CVE-2021-43553?

CVE-2021-43553 is a vulnerability in PI Vision that allows a user with insufficient privileges to access sensitive information.

Q: How does CVE-2021-43553 affect PI Vision?

CVE-2021-43553 allows unauthorized users to view information in PI Vision that they should not have access to.

Q: What is the severity of CVE-2021-43553?

CVE-2021-43553 has a severity rating of 4.3, which is considered medium.

Q: How can I fix CVE-2021-43553?

To fix CVE-2021-43553, it is recommended to update PI Vision to the latest version available, which includes a patch for this vulnerability.

Q: Where can I find more information about CVE-2021-43553?

You can find more information about CVE-2021-43553 on the official US-CERT website at the following URL: https://us-cert.cisa.gov/ics/advisories/icsa-21-313-05

Published Nov 17, 2021

Updated

PI Vision could disclose information to a user with insufficient privileges for an AF attribute that is the child of another attribute and is configured as a Limits property.

Affected Software

2 affected componentsFixes available

OSIsoft PI Vision<2021

OSIsoft PI:Vision<2021

2021

Event History

Nov 17, 2021

CVE Published

via MITRE·06:20 PM

Data Sourced

via MITRE·06:20 PM

DescriptionSeverityWeakness

Parent advisories

This vulnerability appears in the following advisories.

ICSA-21-313-05

Frequently Asked Questions

What is CVE-2021-43553?

CVE-2021-43553 is a vulnerability in PI Vision that allows a user with insufficient privileges to access sensitive information.

How does CVE-2021-43553 affect PI Vision?

CVE-2021-43553 allows unauthorized users to view information in PI Vision that they should not have access to.

What is the severity of CVE-2021-43553?

CVE-2021-43553 has a severity rating of 4.3, which is considered medium.

How can I fix CVE-2021-43553?