VYPR
Unrated severityNVD Advisory· Published May 26, 2015· Updated Jun 17, 2026

CVE-2015-1013

CVE-2015-1013

Description

OSIsoft PI AF 2.6 and 2.7 and PI SQL for AF 2.1.2.19 do not ensure that the PI SQL (AF) Trusted Users group lacks the Everyone account, which allows remote authenticated users to bypass intended command restrictions via SQL statements.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:osisoft:pi_server:2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:osisoft:pi_sql_for_af:2.1.2.19:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:osisoft:pi_sql_for_af:2.1.2.19:*:*:*:*:*:*:*
    • (no CPE)range: 2.1.2.19
  • Osisoft/PI AFllm-fuzzy
    Range: 2.6, 2.7

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.