CVE-2026-1495 – Insertion of Sensitive Information into Log File vulnerability in AVEVA PI to CONNECT Agent

CVE ID : CVE-2026-1495

Published : Feb. 10, 2026, 9:16 p.m. | 1 hour, 7 minutes ago

Description : The vulnerability, if exploited, could allow an attacker with Event Log Reader (S-1-5-32-573) privileges to obtain proxy details, including URL and proxy credentials, from the PI to CONNECT event log files. This could enable unauthorized access to the proxy server.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-25872 – JUNG Smart Panel 5.1 KNX Unauthenticated Path Traversal

CVE-2026-25870 – DoraCMS

CVE-2026-25251 – “SourceForge Information Disclosure Vulnerability”

CVE-2026-26013 – LangChain affected by SSRF via image_url token counting in ChatOpenAI.get_num_tokens_from_messages