Filtered by vendor Arcinfo
Subscriptions
Total
7 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-4384 | 1 Arcinfo | 1 Pcvue | 2025-05-15 | N/A |
| The MQTT add-on of PcVue fails to verify that a remote device’s certificate has not already expired or has not yet become valid. This allows malicious devices to present certificates that are not rejected properly. The use of a client certificate reduces the risk for random devices to take advantage of this flaw. | ||||
| CVE-2011-4045 | 1 Arcinfo | 3 Frontvue, Pcvue, Plantvue | 2025-04-11 | N/A |
| Buffer overflow in an unspecified ActiveX control in aipgctl.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to cause a denial of service via a crafted HTML document. | ||||
| CVE-2011-4044 | 1 Arcinfo | 3 Frontvue, Pcvue, Plantvue | 2025-04-11 | N/A |
| An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to modify files via calls to unknown methods. | ||||
| CVE-2011-4043 | 1 Arcinfo | 3 Frontvue, Pcvue, Plantvue | 2025-04-11 | N/A |
| Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large value for an integer parameter, leading to a buffer overflow. | ||||
| CVE-2011-4042 | 1 Arcinfo | 3 Frontvue, Pcvue, Plantvue | 2025-04-11 | N/A |
| An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code by using a crafted HTML document to obtain control of a function pointer. | ||||
| CVE-2024-12057 | 1 Arcinfo | 1 Pcvue | 2025-03-21 | N/A |
| User credentials (login & password) are inserted into log files when a user tries to authenticate using a version of a Web client that is not compatible with that of the PcVue Web back end. By exploiting this vulnerability, an attacker could retrieve the credentials of a user by accessing the Log File. Successful exploitation of this vulnerability could lead to unauthorized access to the application. | ||||
| CVE-2024-12056 | 1 Arcinfo | 1 Pcvue | 2024-12-04 | N/A |
| The Client secret is not checked when using the OAuth Password grant type. By exploiting this vulnerability, an attacker could connect to a web server using a client application not explicitly authorized as part of the OAuth deployment. Exploitation requires valid credentials and does not permit the attacker to bypass user privileges. | ||||
Page 1 of 1.