CVE-2017-7926
CVE-2017-7926
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
25 Aug 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A Cross-Site Request Forgery issue was discovered in OSIsoft PI Web API versions prior to 2017 (1.9.0). The vulnerability allows cross-site request forgery (CSRF) attacks to occur when an otherwise-unauthorized cross-site request is sent from a browser the server has previously authenticated.
Affected products
n/a · OSIsoft PI Web API 2017Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →