Vulnerability in Aveva Pi Data Archive
CVE-2025-44019
AVEVA PI Data Archive products are vulnerable to an uncaught exception that, if exploited, could allow an authenticated user to shut down certain necessary PI Data Archive subsystems, resulting in a denial of service. Depending on the t…
EPSS: 0.004 (28.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.1 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H.
Affected products
- Aveva Pi Data Archive — versions 0, 2023, 2023 Patch 1
- Aveva Pi Server — versions 0, 2023, 2023 Patch 1
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2025-44019?
- CVE-2025-44019 is a high-severity vulnerability in Aveva Pi Data Archive, classified under CWE-248. CVSS score: 7.1/10. Published 2025-06-12.
- How severe is CVE-2025-44019?
- High severity. CVSS v3 base score is 7.1 out of 10.