CVE-2023-34348

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/01/2024
Last modified:
21/10/2024

Description

AVEVA PI Server versions 2023 and 2018 SP3 P05 and prior contain a vulnerability that could allow an unauthenticated user to remotely crash the PI Message Subsystem of a PI Server, resulting in a denial-of-service condition.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:aveva:pi_server:*:*:*:*:*:*:*:* 2018 (excluding)
cpe:2.3:a:aveva:pi_server:2018:-:*:*:*:*:*:*
cpe:2.3:a:aveva:pi_server:2018:sp3_patch_5:*:*:*:*:*:*
cpe:2.3:a:aveva:pi_server:2023:-:*:*:*:*:*:*


References to Advisories, Solutions, and Tools