CVE-2020-10600

MEDIUM

PI Archive Subsystem <2018 SP2 - DoS

Title source: llm

Description

An authenticated remote attacker could crash PI Archive Subsystem when the subsystem is working under memory pressure. This can result in blocking queries to PI Data Archive (2018 SP2 and prior versions).

References (1)

Core 1

Core References

Third Party Advisory, US Government Resource x_refsource_misc

https://us-cert.cisa.gov/ics/advisories/icsa-20-133-02

Scores

CVSS v3 5.9

EPSS 0.0084

EPSS Percentile 53.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H

Details

CWE

CWE-476

Status published

Products (1)

osisoft/pi_data_archive < 2019

Published Jul 24, 2020

Tracked Since Feb 18, 2026