CVE-2020-10610

Summary

In OSIsoft PI System multiple products and versions, a local attacker can modify a search path and plant a binary to exploit the affected PI System software to take control of the local computer at Windows system privilege level, resulting in unauthorized information disclosure, deletion, or modification.

Affected Software

VendorProductVersion RangeStatus
n/aOSIsoft PI System multiple products and versionsOSIsoft PI System multiple products and versionsaffected

Weaknesses

  • CWE-427: UNCONTROLLED SEARCH PATH ELEMENT CWE-427

ADP Enrichment

CVE Program Container

Additional References

References