CVE-2024-3468
June 12, 2024, 9:15 p.m.
Tags
Product(s) Impacted
AVEVA PI Web API
Description
There is a vulnerability in AVEVA PI Web API that could allow malicious code to execute on the PI Web API environment under the privileges of an interactive user that was socially engineered to use API XML import functionality with content supplied by an attacker.
Weaknesses
Date
Published: June 12, 2024, 9:15 p.m.
Last Modified: June 12, 2024, 9:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
ics-cert@hq.dhs.gov
References
https://www.cisa.gov/
ics-cert@hq.dhs.gov