CVE-2024-12057 – PcVue Web Back End Password Disclosure Vulnerability

12月 9, 2024
8:16 pm

CVE ID : CVE-2024-12057

Published : Dec. 9, 2024, 7:15 p.m. | 1 hour ago

Description : User credentials (login & password) are inserted into log files when a user tries to authenticate using a version of a Web client that is not compatible with that of the PcVue Web back end.
By exploiting this vulnerability, an attacker could retrieve the credentials of a user by accessing the Log File. Successful exploitation of this vulnerability could lead to unauthorized access to the application.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-12057 – PcVue Web Back End Password Disclosure Vulnerability

Elvescore.io

Recent Posts

CVE-2024-12908 – Delinea Secret Server Regular Expression Injection Vulnerability

CVE-2024-12958 – RPost MCA SQL Injection Vulnerability

CVE-2024-12959 – “Fortress MCA SQL Injection”

CVE-2024-51540 – Dell ECS Arithmetic Overflow Vulnerability (Path Traversal)

CVE-2024-12955 – PHPGurukul Blood Bank & Donor Management System CSRF Vulnerability

CVE-2024-12956 – “Unrestricted File Upload in 1000 Projects Portfolio Management System MCA”

CVE-2024-12057 – PcVue Web Back End Password Disclosure Vulnerability

CVE-2024-12057 – PcVue Web Back End Password Disclosure Vulnerability