Lucene search
+L

17 matches found

Cvelist
Cvelist
added 2022/08/24 3:16 p.m.25 views

CVE-2022-2569 ARC Informatique PcVue

The affected device stores sensitive information in cleartext, which may allow an authenticated user to access session data stored in the OAuth database belonging to legitimate users...

5.5CVSS5.4AI score0.0013EPSS
Exploits0References1
NVD
NVD
added 2020/10/12 2:15 p.m.22 views

CVE-2020-26869

ARC Informatique PcVue prior to version 12.0.17 is vulnerable to information exposure, allowing unauthorized users to access session data of legitimate users. This issue also affects third-party systems based on the Web Services Toolkit...

7.5CVSS0.01654EPSS
Exploits0References4
Prion
Prion
added 2020/10/12 2:15 p.m.17 views

Deserialization of untrusted data

ARC Informatique PcVue prior to version 12.0.17 is vulnerable due to the deserialization of untrusted data, which may allow an attacker to remotely execute arbitrary code on the web and mobile back-end server...

7.5CVSS9.7AI score0.03721EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2020/10/12 2:15 p.m.18 views

Information disclosure

ARC Informatique PcVue prior to version 12.0.17 is vulnerable to a denial-of-service attack due to the ability of an unauthorized user to modify information used to validate messages sent by legitimate web clients. This issue also affects third-party systems based on the Web Services Toolkit...

5CVSS7.8AI score0.02134EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2020/10/12 1:54 p.m.49 views

CVE-2020-26867

CVE-2020-26867 concerns ARC Informatique PcVue deserialization of untrusted data, enabling remote arbitrary code execution on the web/mobile back-end server. Affected: PcVue versions prior to 12.0.17 (8.10–12.0.x). Root cause: insecure deserialization of messages on the interface. Impact: high-se...

9.8CVSS9.8AI score0.03721EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2020/10/12 1:52 p.m.68 views

CVE-2020-26869

ARC Informatique PcVue Information Disclosure (CVE-2020-26869): PcVue versions 8.10 up to before 12.0.17 expose session data of legitimate users to unauthorized actors via Web Services Toolkit integration. ICSA-20-308-03 confirms the vulnerability and cites a CVSS v3 base score of 7.5 (Network, L...

7.5CVSS7.5AI score0.01654EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2020/10/12 1:52 p.m.41 views

CVE-2020-26869 ARC Informatique PcVue Exposure of Sensitive Information to an Unauthorized Actor

ARC Informatique PcVue prior to version 12.0.17 is vulnerable to information exposure, allowing unauthorized users to access session data of legitimate users. This issue also affects third-party systems based on the Web Services Toolkit...

7.5CVSS7.4AI score0.01654EPSS
Exploits0References4
NVD
NVD
added 2012/04/03 3:44 a.m.17 views

CVE-2011-4045

Buffer overflow in an unspecified ActiveX control in aipgctl.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to cause a denial of service via a crafted HTML document...

4.3CVSS6.7AI score0.03698EPSS
Exploits1References3
NVD
NVD
added 2012/04/03 3:44 a.m.23 views

CVE-2011-4042

An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code by using a crafted HTML document to obtain control of a function pointer...

9.3CVSS7.4AI score0.06448EPSS
Exploits1References3
NVD
NVD
added 2012/04/03 3:44 a.m.18 views

CVE-2011-4043

Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large value for an integer parameter, leading to a buffer overflow...

9.3CVSS8.1AI score0.07439EPSS
Exploits1References3
Prion
Prion
added 2012/04/03 3:44 a.m.17 views

Buffer overflow

Buffer overflow in an unspecified ActiveX control in aipgctl.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to cause a denial of service via a crafted HTML document...

4.3CVSS7.2AI score0.03698EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2012/04/03 3:44 a.m.16 views

Integer overflow

Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large value for an integer parameter, leading to a buffer overflow...

9.3CVSS8.8AI score0.07439EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2012/04/03 3:44 a.m.17 views

Null pointer dereference

An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code by using a crafted HTML document to obtain control of a function pointer...

9.3CVSS8AI score0.06448EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2012/04/03 1:0 a.m.29 views

CVE-2011-4042

An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code by using a crafted HTML document to obtain control of a function pointer...

7.4AI score0.06448EPSS
Exploits1References3
CVE
CVE
added 2012/04/03 1:0 a.m.154 views

CVE-2011-4044

CVE-2011-4044 affects ARC Informatique PcVue (versions 6.0–10.0) with vulnerable SVUIGrd.ocx components in FrontVue/PlantVue. The flaw enables remote attackers to modify files or execute code by abusing SaveObject()/LoadObject() method handling, via a crafted aStream/function-pointer overwrite vu...

5.8CVSS6.8AI score0.26732EPSS
Exploits2References3Affected Software3
CVE
CVE
added 2012/04/03 1:0 a.m.158 views

CVE-2011-4045

CVE-2011-4045 is a buffer overflow in an unspecified ActiveX control (aipgctl.ocx) used by ARC Informatique PcVue 6.0–10.0, FrontVue, and PlantVue. The vulnerability allows remote attackers to cause a denial of service via a crafted HTML document. Affected products include PcVue versions 6.x thro...

4.3CVSS6.9AI score0.03698EPSS
Exploits1References3Affected Software3
Cvelist
Cvelist
added 2012/04/03 1:0 a.m.28 views

CVE-2011-4044

An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to modify files via calls to unknown methods...

6.6AI score0.26732EPSS
Exploits2References3
Rows per page
Query Builder