CVE-2023-34348 : Security Advisory and Response
Get detailed insights into CVE-2023-34348, a high-severity vulnerability in Aveva PI Server allowing remote crashes. Learn how to mitigate risks and apply security updates.
This article provides detailed information on CVE-2023-34348, a vulnerability found in Aveva PI Server that could lead to a denial-of-service condition.
Understanding CVE-2023-34348
CVE-2023-34348 is a vulnerability in Aveva PI Server, affecting versions 2023 and 2018 SP3 P05 and prior. It allows an unauthenticated user to remotely crash the PI Message Subsystem, resulting in a denial-of-service condition.
What is CVE-2023-34348?
CVE-2023-34348 is categorized under CWE-703: Improper Check or Handling of Exceptional Conditions. It poses a high severity threat with a base score of 7.5 in the CVSS v3.1 system.
The Impact of CVE-2023-34348
The vulnerability could significantly impact the availability of the PI Server, leading to a denial-of-service situation. Organizations using affected versions are at risk of service disruption and system unavailability.
Technical Details of CVE-2023-34348
Vulnerability Description
Aveva PI Server versions 2023 and 2018 SP3 P05 and prior contain a vulnerability that could allow an unauthenticated user to remotely crash the PI Message Subsystem, resulting in a denial-of-service condition.
Affected Systems and Versions
Affected versions include Aveva PI Server 2023 and 2018 SP3 P05 and prior.
Exploitation Mechanism
The vulnerability can be exploited by an unauthenticated individual over the network, impacting the PI Message Subsystem.
Mitigation and Prevention
Immediate Steps to Take
All affected versions can be fixed by upgrading to Aveva PI Server version 2023 Patch 1 or later. For an alternative fix, deploying Aveva PI Server version 2018 SP3 Patch 6 or later may also address the issue.
Long-Term Security Practices
Organizations should set the PI Message Subsystem to auto-restart, monitor memory usage, limit network access, and control write access to the PI Server Message Log.
Patching and Updates
It is crucial for organizations to apply security updates promptly. Refer to AVEVA-2024-001 for more information on this vulnerability and related security updates.