PcVue — Vulnerabilities & Security Advisories 17

All 17 CVE vulnerabilities found in PcVue, with AI-generated Chinese analysis, references, and POCs.

Vendor: ARC Informatique

CVE ID	Title	CVSS	Severity	Published
CVE-2026-1698	HTTP Host header vulnerability in WebClient and WebScheduler web apps CWE-644	6.5^AI	Medium^AI	2026-02-26
CVE-2026-1697	Use of unsecure cookies for GraphicalData web service and WebClient web app CWE-614	7.2^AI	High^AI	2026-02-26
CVE-2026-1696	Missing security HTTP headers CWE-79	6.5^AI	Medium^AI	2026-02-26
CVE-2026-1695	XSS vulnerability upon unsuccessful authentication CWE-79	6.1^AI	Medium^AI	2026-02-26
CVE-2026-1694	Server configuration details in HTTP headers CWE-201	5.3^AI	Medium^AI	2026-02-26
CVE-2026-1693	Use of vulnerable Resource Owner Password Credentials flow CWE-1390	9.1^AI	Critical^AI	2026-02-26
CVE-2026-1692	Missing origin validation in GraphicalData web service requests CWE-1385	5.4^AI	Medium^AI	2026-02-26
CVE-2025-9999	Improper validation of payload elements CWE-940	9.8^AI	Critical^AI	2025-09-05
CVE-2025-9998	Improper validation of packets sequencing CWE-754	7.5^AI	High^AI	2025-09-05
CVE-2025-4384	Certificate validity not properly verified CWE-298	7.5^AI	High^AI	2025-05-06
CVE-2024-12057	User credentials recorded in log files CWE-532	8.1	-	2024-12-09
CVE-2024-12056	Client Secret not checked with OAuth Password grant type CWE-358	8.8	-	2024-12-04
CVE-2022-4312	ARC Informatique PcVue 安全漏洞 CWE-312	5.5	Medium	2022-12-12
CVE-2022-4311	ARC Informatique PcVue 日志信息泄露漏洞 CWE-532	4.7	Medium	2022-12-12
CVE-2020-26867	ARC Informatique PcVue Deserialization of Untrusted Data CWE-502	9.8	Critical	2020-10-12
CVE-2020-26869	ARC Informatique PcVue Exposure of Sensitive Information to an Unauthorized Actor CWE-200	7.5	High	2020-10-12
CVE-2020-26868	ARC Informatique PcVue Access to Critical Private Variable via Public Method CWE-767	7.5	High	2020-10-12

All 17 known CVE vulnerabilities affecting PcVue with full Chinese analysis, references, and POCs where available.