What the vulnerability does

01Description

In OSIsoft PI Web API and prior, the affected product is vulnerable to a direct attack due to a cross-site request forgery protection setting that has not taken effect.

Key dates

02Disclosure timeline

August 15, 2019 CVE published
August 4, 2024 Record updated