RSS   Vulnerabilities for 'Pcvue'   RSS

2020-10-12
 
CVE-2020-26869

CWE-200
 

 
An information exposure vulnerability exists in PcVue 12, allowing a non-authorized user to access session data of legitimate users.

 
 
CVE-2020-26868

NVD-CWE-noinfo
 

 
A Denial Of Service vulnerability exists in PcVue from version 8.10 onward, due to the ability for a non-authorized user to modify information used to validate messages sent by legitimate web clients.

 
 
CVE-2020-26867

CWE-502
 

 
A Remote Code Execution vulnerability exists in PcVue from version 8.10 onward, due to the unsafe deserialization of messages received on the interface.

 


Copyright 2024, cxsecurity.com

 

Back to Top