CVE-2025-4384

🗓️ 06 May 2025 15:59:27Reported by arcinfoType

MQTT add-on of PcVue does not verify certificate validity, allowing exploitation by malicious devices.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-4384	6 May 202516:21	–	circl
CNNVD	PcVue 安全漏洞	6 May 202500:00	–	cnnvd
Cvelist	CVE-2025-4384 Certificate validity not properly verified	6 May 202515:59	–	cvelist
EUVD	EUVD-2025-13609	3 Oct 202520:07	–	euvd
NVD	CVE-2025-4384	6 May 202516:15	–	nvd
Positive Technologies	PT-2025-19957 · Pcvue · Pcvue	6 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-4384	8 May 202516:05	–	redhatcve
Vulnrichment	CVE-2025-4384 Certificate validity not properly verified	6 May 202515:59	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "MQTT add-on"
    ],
    "product": "PcVue",
    "vendor": "arcinfo",
    "versions": [
      {
        "status": "unaffected",
        "version": "16.3.0",
        "versionType": "cpe"
      },
      {
        "lessThan": "16.2.5",
        "status": "affected",
        "version": "16.0",
        "versionType": "cpe"
      },
      {
        "lessThan": "15.2.12",
        "status": "affected",
        "version": "15.0",
        "versionType": "cpe"
      }
    ]
  }
]

Source	Link
pcvue	www.pcvue.com/security/

15 Apr 2026 00:35Current

6.7Medium risk

Vulners AI Score6.7

CVSS 46

EPSS0.00068

SSVC

CWE-298