Please ensure Javascript is enabled for purposes of website accessibility
Powered by Zoomin Software. For more details please contactZoomin

AVEVA™ Adapter for Azure Event Hubs

TABLE OF CONTENTS

Release notes

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
  • Last UpdatedOct 08, 2024
  • 2 minute read

AVEVA Adapter for Azure Event Hubs 1.0.1.239
Adapter Framework 1.4

Overview

We are pleased to announce the release of AVEVA Adapter for Azure Event Hubs 1.0.1.239 . This is the first general availability release for the adapter.

Resolved issues

The following issues have been resolved since the lighthouse release:

Item

Description

197937

When submitting a POST for data selection configurations to the adapter that contains more than 10,000 streams, a timeout no longer occurs.

Setup

System requirements

Refer to System requirements.

Installation

Refer to Install the adapter.

Uninstallation

Refer to Uninstall the adapter.

Security information and guidance

AVEVA's commitment

Because the PI System often serves as a barrier protecting control system networks and mission-critical infrastructure assets, AVEVA is committed to (1) delivering a high-quality product and (2) communicating clearly what security issues have been addressed. This release of AVEVA Adapter for Azure Event Hubs is the highest quality and most secure version of the AVEVA Adapter for Azure Event Hubs released to date. AVEVA's commitment to improving the PI System is ongoing, and each future version should raise the quality and security bar even further.

Vulnerability communication

The practice of publicly disclosing internally discovered vulnerabilities is consistent with the Common Industrial Control System Vulnerability Disclosure Framework developed by the Industrial Control Systems Joint Working Group (ICSJWG). Despite the increased risk posed by greater transparency, AVEVA is sharing this information to help you make an informed decision about when to upgrade to ensure your PI System has the best available protection.

For more information, refer to our Ethical Disclosure Policy.

To report a security vulnerability, refer to our Report a Security Vulnerability.

Vulnerability scoring

We have selected the Common Vulnerability Scoring System (CVSS) to quantify the severity of security vulnerabilities for disclosure. To calculate the CVSS scores, AVEVA uses the National Vulnerability Database (NVD) calculator maintained by the National Institute of Standards and Technology (NIST). AVEVA uses Critical, High, Medium, and Low categories to aggregate the CVSS Base scores. This removes some of the opinion-related errors of CVSS scoring. As noted in the CVSS specification, Base scores range from 0 for the lowest severity to 10 for the highest severity.

Overview of new vulnerabilities found or fixed

This section is intended to provide relevant security-related information to guide your installation or upgrade decision. AVEVA is proactively disclosing aggregate information about the number and severity of AVEVA Adapter for Azure Event Hubs security vulnerabilities that are fixed in this release.

No known security vulnerabilities are applicable to this release.

The following table lists the known vulnerabilities fixed by this release.

Component

Version

CVE or Reference

CVSS

Mitigation

json.Net

12.0.3

Applications that use Newtonsoft.Json might be exposed to DOS vulnerability

6.7

No code paths result in JSON parsing and subsequent serialization resulting in DoS vulnerability. This vulnerability was resolved by upgrading json.Net to version 13.0.1.

Technical support and resources

Refer to Technical support and feedback.

In This Topic
TitleResults for “How to create a CRG?”Also Available in