CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-26868

ARC Informatique PcVue prior to version 12.0.17 is vulnerable to a denial-of-service attack due to the ability of an unauthorized user to modify information used to validate messages sent by legitimate web clients. This issue also affects third-party systems based on the Web Services Toolkit.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://ics-cert.kaspersky.com/advisories/klcert-advisories/2020/10/09/klcert-20-016-denial-of-service-in-arc-informatique-pcvue/
https://us-cert.cisa.gov/ics/advisories/icsa-20-308-03
https://www.pcvuesolutions.com/security
https://www.pcvuesolutions.com/support/index.php/en/security-bulletin/1076-security-bulletin-2020-1
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2020/10/09/klcert-20-016-denial-of-service-in-arc-informatique-pcvue/
https://us-cert.cisa.gov/ics/advisories/icsa-20-308-03
https://www.pcvuesolutions.com/security
https://www.pcvuesolutions.com/support/index.php/en/security-bulletin/1076-security-bulletin-2020-1

Products affected by CVE-2020-26868

Pcvuesolutions » Pcvue » Version: 12

cpe:2.3:a:pcvuesolutions:pcvue:12
Pcvuesolutions » Pcvue » Version: 8.10

cpe:2.3:a:pcvuesolutions:pcvue:8.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-26868

Products

Pricing

Contact Us