3 matches found
CVE-2022-4311
An insertion of sensitive information into log file vulnerability exists in PcVue versions 15 through 15.2.2. This could allow a user with access to the log files to discover connection strings of data sources configured for the DbConnect, which could include credentials. Successful exploitation ...
ARC Informatique PcVue
1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low attack complexity Vendor: ARC Informatique Equipment: PcVue Vulnerabilities: Cleartext Storage of Sensitive Information, Insertion of Sensitive Information into Log File 2. UPDATE OR REPOSTED INFORMATION This updated advisory is a follow-up to the...
CVE-2022-4311
Summary (CVE-2022-4311) : PcVue (ARC Informatique) versions 15–15.2.2 are affected by a vulnerability where sensitive information can be inserted into log files, allowing someone with log access to discover DbConnect data source connection strings and potentially credentials, leading to unauthori...