Arcinfo

Pcvue

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.6

CVE-2025-9999

  • EPSS 0.04%
  • Veröffentlicht 05.09.2025 16:41:01
  • Zuletzt bearbeitet 05.09.2025 17:47:10

Some payload elements of the messages sent between two stations in a networking architecture are not properly checked on the receiving station allowing an attacker to execute unauthorized commands in the application.

6

CVE-2025-9998

  • EPSS 0.03%
  • Veröffentlicht 05.09.2025 16:40:13
  • Zuletzt bearbeitet 05.09.2025 17:47:10

The sequence of packets received by a Networking server are not correctly checked. An attacker could exploit this vulnerability to send specially crafted messages to force the application to stop.

6

CVE-2025-4384

  • EPSS 0.01%
  • Veröffentlicht 06.05.2025 15:59:27
  • Zuletzt bearbeitet 07.05.2025 14:13:20

The MQTT add-on of PcVue fails to verify that a remote device’s certificate has not already expired or has not yet become valid. This allows malicious devices to present certificates that are not rejected properly. The use of a client certificate re...

1.8

CVE-2024-12057

  • EPSS 0.03%
  • Veröffentlicht 09.12.2024 19:15:12
  • Zuletzt bearbeitet 09.12.2024 19:15:12

User credentials (login & password) are inserted into log files when a user tries to authenticate using a version of a Web client that is not compatible with that of the PcVue Web back end. By exploiting this vulnerability, an attacker could retrieve...

2.3

CVE-2024-12056

  • EPSS 0.14%
  • Veröffentlicht 04.12.2024 15:15:09
  • Zuletzt bearbeitet 04.12.2024 15:15:09

The Client secret is not checked when using the OAuth Password grant type. By exploiting this vulnerability, an attacker could connect to a web server using a client application not explicitly authorized as part of the OAuth deployment. Exploitation...

5.8

CVE-2011-4044

  • EPSS 61.86%
  • Veröffentlicht 03.04.2012 03:44:36
  • Zuletzt bearbeitet 11.04.2025 00:51:21

An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to modify files via calls to unknown methods.

4.3

CVE-2011-4045

  • EPSS 10.08%
  • Veröffentlicht 03.04.2012 03:44:36
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer overflow in an unspecified ActiveX control in aipgctl.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to cause a denial of service via a crafted HTML document.

9.3

CVE-2011-4042

  • EPSS 29.58%
  • Veröffentlicht 03.04.2012 03:44:35
  • Zuletzt bearbeitet 11.04.2025 00:51:21

An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code by using a crafted HTML document to obtain control of a function pointer.

9.3

CVE-2011-4043

  • EPSS 31.37%
  • Veröffentlicht 03.04.2012 03:44:35
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large value for an integer parameter, leading to a buffer ove...