Unrated severityNVD Advisory· Published Oct 12, 2020· Updated Sep 16, 2024
ARC Informatique PcVue Deserialization of Untrusted Data
CVE-2020-26867
Description
ARC Informatique PcVue prior to version 12.0.17 is vulnerable due to the deserialization of untrusted data, which may allow an attacker to remotely execute arbitrary code on the web and mobile back-end server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ARC Informatique/PcVuev5Range: unspecified
Patches
Vulnerability mechanics
References
4- ics-cert.kaspersky.com/advisories/klcert-advisories/2020/10/09/klcert-20-015-remote-code-execution-in-arc-informatique-pcvue/mitrex_refsource_CONFIRM
- us-cert.cisa.gov/ics/advisories/icsa-20-308-03mitrex_refsource_MISCx_refsource_CONFIRM
- www.pcvuesolutions.com/securitymitrex_refsource_CONFIRM
- www.pcvuesolutions.com/support/index.php/en/security-bulletin/1076-security-bulletin-2020-1mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.