Medium severity5.4NVD Advisory· Published Aug 14, 2017· Updated May 13, 2026

CVE-2017-9655

Description

A Cross-Site Scripting issue was discovered in OSIsoft PI Integrator for Business Analytics before 2016 R2, PI Integrator for Microsoft Azure before 2016 R2 SP1, and PI Integrator for SAP HANA before 2017. An attacker may be able to upload a malicious script that attempts to redirect users to a malicious web site.

Affected products

Osisoft/Pi Integrator For Business Analystics
cpe:2.3:a:osisoft:pi_integrator_for_business_analystics:*:*:*:*:*:*:*:*
Range: <=2016
Osisoft/Pi Integrator For Microsoft Azure
cpe:2.3:a:osisoft:pi_integrator_for_microsoft_azure:*:*:*:*:*:*:*:*
Range: <=2016
Osisoft/Pi Integrator For Sap Hana
cpe:2.3:a:osisoft:pi_integrator_for_sap_hana:*:*:*:*:*:*:*:*
Range: <=2016

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/100212nvdThird Party AdvisoryVDB Entry
ics-cert.us-cert.gov/advisories/ICSA-17-220-01nvdMitigationThird Party AdvisoryUS Government Resource
techsupport.osisoft.com/Troubleshooting/Alerts/AL00324nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.351
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000