The Foundry Magritte plugin osisoft-pi-web-connector versions 0.15.0 - 0.43.0 was found to be logging in a manner that captured authentication requests. This vulnerability is resolved in osisoft-pi-web-connector version 0.44.0.
References
Link | Resource |
---|---|
https://github.com/palantir/security-bulletins/blob/main/PLTRSEC-2022-03.md | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2022-11-04 09:15
Updated : 2022-11-14 07:23
NVD link : CVE-2022-27893
Mitre link : CVE-2022-27893
JSON object : View
CWE
CWE-532
Insertion of Sensitive Information into Log File
Products Affected
osisoft-pi-web-connector_project
- osisoft-pi-web-connector