High
An attacker could exploit this vulnerability in a third-party component to remotely execute code on the client computer with the same permissions as the PI SQL Client user.
Communication with a malicious PI SQL Data Access Server (RTQP Engine) is needed to expose a PI SQL client to this vulnerability.
Privilege access
OSIsoft LLC
PI SQL Client 2018 (PI SQL Client OLEDB 2018)
OSIsoft recommends users upgrade to PI SQL Client 2018 R2 or later to resolve this issue.