CVE-2024-12057

Vulnerability Description

User credentials (login & password) are inserted into log files when a user tries to authenticate using a version of a Web client that is not compatible with that of the PcVue Web back end. By exploiting this vulnerability, an attacker could retrieve the credentials of a user by accessing the Log File. Successful exploitation of this vulnerability could lead to unauthorized access to the application.

Related Weaknesses (CWE)

CWE-532

References

https://www.pcvue.com/security/#SB2024-6

FAQ

What is CVE-2024-12057?

CVE-2024-12057 is a documented vulnerability. User credentials (login & password) are inserted into log files when a user tries to authenticate using a version of a Web client that is not compatible with that of the PcVue Web back end. By exploit...

How severe is CVE-2024-12057?

CVSS scoring is not yet available for CVE-2024-12057. Check NVD for updates.

Is there a patch for CVE-2024-12057?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.