CVE-2020-10600 : What You Need to Know
Learn about CVE-2020-10600, a vulnerability in OSIsoft's PI Data Archive prior to 2018 SP2. Find out the impact, affected systems, exploitation details, and mitigation steps.
An authenticated remote attacker could crash PI Archive Subsystem when the subsystem is working under memory pressure, potentially leading to blocking queries to PI Data Archive (2018 SP2 and prior versions).
Understanding CVE-2020-10600
This CVE involves vulnerabilities in OSIsoft's PI Data Archive affecting versions prior to 2018 SP2.
What is CVE-2020-10600?
CVE-2020-10600 is a vulnerability that allows an authenticated remote attacker to crash the PI Archive Subsystem under memory pressure, causing potential disruptions to the PI Data Archive queries.
The Impact of CVE-2020-10600
The vulnerability can result in denial of service by blocking queries to PI Data Archive, impacting system availability.
Technical Details of CVE-2020-10600
This section provides detailed technical information about the vulnerability.
Vulnerability Description
The vulnerability involves a NULL POINTER DEREFERENCE (CWE-476) that can be exploited by an authenticated remote attacker.
Affected Systems and Versions
- Product: PI Data Archive
- Vendor: OSIsoft
- Affected Versions: Prior to 2018 SP2
Exploitation Mechanism
- Attack Complexity: High
- Attack Vector: Network
- Availability Impact: High
- Base Score: 5.9 (Medium)
- Integrity Impact: Low
- Privileges Required: Low
- Scope: Unchanged
Mitigation and Prevention
Protect your systems from CVE-2020-10600 with the following measures.
Immediate Steps to Take
- Fully configure Windows authentication for the PI System
- Disable legacy authentication methods
Long-Term Security Practices
- Implement regular security updates and patches
- Follow OSIsoft's security best practices for securing your PI Server
Patching and Updates
Ensure systems are up to date with the latest security patches and follow vendor recommendations for securing the PI System.