7.1

CVE-2025-44019

AVEVA PI Data Archive products are vulnerable to an uncaught exception that, if 
exploited, could allow an authenticated user to shut down certain 
necessary PI Data Archive subsystems, resulting in a denial of service. 
Depending on the timing of the crash, data present in snapshots/write 
cache may be lost.

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAVEVA
Produkt PI Data Archive
Default Statusunaffected
Version <= 2018 SP3 Patch 4
Version 0
Status affected
HerstellerAVEVA
Produkt PI Data Archive
Default Statusunaffected
Version 2023
Status affected
HerstellerAVEVA
Produkt PI Data Archive
Default Statusunaffected
Version 2023 Patch 1
Status affected
HerstellerAVEVA
Produkt PI Server
Default Statusunaffected
Version <= 2018 SP3 Patch 6
Version 0
Status affected
HerstellerAVEVA
Produkt PI Server
Default Statusunaffected
Version 2023
Status affected
HerstellerAVEVA
Produkt PI Server
Default Statusunaffected
Version 2023 Patch 1
Status affected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.06% 0.171
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
ics-cert@hq.dhs.gov 7.1 0 0
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
ics-cert@hq.dhs.gov 7.1 2.8 4.2
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
CWE-248 Uncaught Exception

An exception is thrown from a function, but it is not caught.