AVEVA PI to CONNECT Agent
Summary
A vulnerability (CVE-2026-1495) exists in AVEVA PI to CONNECT Agent versions v2.4.2520 and earlier that could allow unauthorized access to the proxy server. An attacker with Event Log Reader privileges could obtain proxy details, including URL and credentials, from the PI to CONNECT event log files.
IFF Assessment
The vulnerability allows unauthorized access to the proxy server, which is detrimental to defenders.
Severity
Defender Context
This vulnerability highlights the risk of sensitive information being logged, particularly in industrial control systems (ICS) environments. Defenders should ensure that systems are updated to the latest versions, actively review logs for exposed credentials, and implement strong access controls. Logging practices should be carefully reviewed to avoid storing sensitive data in plaintext.