CVE-2018-7504

Severity CVSS v4.0:
Pending analysis
Type:
CWE-693 Protection Mechanism Failure
Publication date:
14/03/2018
Last modified:
17/06/2026

Description

A Protection Mechanism Failure issue was discovered in OSIsoft PI Vision versions 2017 and prior. The X-XSS-Protection response header is not set to block, allowing attempts at reflected cross-site scripting.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:osisoft:pi_vision:*:*:*:*:*:*:*:* 2017 (including)