CVE-2020-10606 [High] | Information Disclosure in Pi Api

In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by affected PI System software. This exploitation can result in unauthorized information disclosure, deletion, or modification if the local computer also processes PI System data from other users, such as from a shared workstation or terminal server deployment.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-11-21	0.03%	0.06%	+0.03%
2	2025-11-18	0.06%	0.03%	-0.03%
3	2025-03-17	—	0.06%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-11-21

0.03%

0.06%

+0.03%

2025-11-18

0.06%

0.03%

-0.03%

2025-03-17

—

0.06%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
7.8	3.1	HIGH	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H` Click to expand Attack vector (AV:L) They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:L) A normal user session is enough; they don’t have to be admin. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:H) Serious risk that confidential data gets exposed in a big way. Integrity (I:H) They could widely tamper with or forge data—trust in the data is badly hurt. Availability (A:H) Could take the service down hard or make it unusable for people who depend on it.	1.8	5.9	[email protected]
4.6	2.0	MEDIUM	`AV:L/AC:L/Au:N/C:P/I:P/A:P` Click to expand Access vector (AV:L) Requires local access to the target system. Access complexity (AC:L) Exploitation conditions are straightforward and predictable. Authentication (AU:N) No authentication is required. Confidentiality impact (C:P) Partial confidentiality impact. Integrity impact (I:P) Partial integrity impact. Availability impact (A:P) Partial availability impact.	3.9	6.4	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

7.8

3.1

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Click to expand

Attack vector (AV:L): They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L): A normal user session is enough; they don’t have to be admin.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H): Serious risk that confidential data gets exposed in a big way.
Integrity (I:H): They could widely tamper with or forge data—trust in the data is badly hurt.
Availability (A:H): Could take the service down hard or make it unusable for people who depend on it.

1.8

5.9

[email protected]

4.6

2.0

MEDIUM

AV:L/AC:L/Au:N/C:P/I:P/A:P Click to expand

Access vector (AV:L): Requires local access to the target system.
Access complexity (AC:L): Exploitation conditions are straightforward and predictable.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:P): Partial confidentiality impact.
Integrity impact (I:P): Partial integrity impact.
Availability impact (A:P): Partial availability impact.

3.9

6.4

[email protected]

Affected software / configurations for CVE-2020-10606

Vendor	Product	Version	Raw CPE
osisoft	pi_api	<= 1.6.8.26	cpe:2.3:a:osisoft:pi_api::::::::
osisoft	pi_api	<= 2.0.2.5	cpe:2.3:a:osisoft:pi_api::::::windows_integrated_security::*
osisoft	pi_buffer_subsystem	<= 4.8.0.18	cpe:2.3:a:osisoft:pi_buffer_subsystem::::::::
osisoft	pi_connector	<= 1.0.0.54	cpe:2.3:a:osisoft:pi_connector::::::ping::*
osisoft	pi_connector	<= 1.1.0.10	cpe:2.3:a:osisoft:pi_connector::::::ethernet\/ip::*
osisoft	pi_connector	<= 1.2.0.6	cpe:2.3:a:osisoft:pi_connector::::::bacnet::*
osisoft	pi_connector	<= 1.2.0.42	cpe:2.3:a:osisoft:pi_connector::::::dc_systems_rtscada::*
osisoft	pi_connector	<= 1.2.1.71	cpe:2.3:a:osisoft:pi_connector::::::siemens_simatic_pcs_7::*
osisoft	pi_connector	<= 1.2.2.79	cpe:2.3:a:osisoft:pi_connector::::::iec_60870-5-104::*
osisoft	pi_connector	<= 1.3.0.1	cpe:2.3:a:osisoft:pi_connector::::::hart-ip::*
osisoft	pi_connector	<= 1.3.0.130	cpe:2.3:a:osisoft:pi_connector::::::opc-ua::*
osisoft	pi_connector	<= 1.3.1.135	cpe:2.3:a:osisoft:pi_connector::::::ufl::*
osisoft	pi_connector	<= 1.4.0.17	cpe:2.3:a:osisoft:pi_connector::::::cygnet::*
osisoft	pi_connector	<= 1.5.0.88	cpe:2.3:a:osisoft:pi_connector::::::wonderware_historian::*
osisoft	pi_connector_relay	<= 2.5.19.0	cpe:2.3:a:osisoft:pi_connector_relay::::::::
osisoft	pi_data_archive	<= 3.4.430.460	cpe:2.3:a:osisoft:pi_data_archive::::::::
osisoft	pi_data_collection_manager	<= 2.5.19.0	cpe:2.3:a:osisoft:pi_data_collection_manager::::::::
osisoft	pi_integrator	<= 2.2.0.183	cpe:2.3:a:osisoft:pi_integrator::::::business_analytics::*
osisoft	pi_interface_configuration_utility	<= 1.5.0.7	cpe:2.3:a:osisoft:pi_interface_configuration_utility::::::::
osisoft	pi_to_ocs	<= 1.1.36.0	cpe:2.3:a:osisoft:pi_to_ocs::::::::

References for CVE-2020-10606

URL	Tags
https://us-cert.cisa.gov/ics/advisories/icsa-20-133-02	Third Party Advisory US Government Resource

URL

CVE-2020-10606

Exploit prediction scoring system (EPSS) score for CVE-2020-10606

Common vulnerability scoring system (CVSS) metrics for CVE-2020-10606

Weakness enumeration for CVE-2020-10606

Affected software / configurations for CVE-2020-10606

References for CVE-2020-10606