CVE-2026-1507

Summary

The affected products are vulnerable to an uncaught exception that could allow an unauthenticated attacker to remotely crash core PI services resulting in a denial-of-service.

Affected Software

VendorProductVersion RangeStatus
AVEVAPI Data Archive PI Server0 <= 2018_SP3_Patch_7affected

Weaknesses

  • CWE-248: CWE-248 Uncaught Exception

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References