Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-5936
On Unix systems (Linux, MacOS), Arc uses a temporary file with unsafe privileges. By tampering with such file, a malicious local user in the system may be able to trigger arbitrary code execution with root privileges.
10
CVSSv2
CVE-2008-1491
Stack-based buffer overflow in the DPC Proxy server (DpcProxy.exe) in ASUS Remote Console (aka ARC or ASMB3) 2.0.0.19 and 2.0.0.24 allows remote malicious users to execute arbitrary code via a long string to TCP port 623.
Asus Remote Console 2.0.0.19
Asus Remote Console 2.0.0.24
2 EDB exploits
NA
CVE-2024-31850
A path traversal vulnerability exists in the Java version of CData Arc < 23.4.8839 when running using the embedded Jetty server, which could allow an unauthenticated remote malicious user to gain access to sensitive information and perform limited actions.
9.3
CVSSv2
CVE-2011-4043
Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 up to and including 10.0, FrontVue, and PlantVue allows remote malicious users to execute arbitrary code via a large value for an integer parameter, leading to a buffer overflow.
Arcinfo Pcvue 8.2
Arcinfo Pcvue 10.0
Arcinfo Plantvue -
Arcinfo Pcvue 6.0
Arcinfo Pcvue 9.0
Arcinfo Frontvue -
1 EDB exploit
NA
CVE-2022-41984
Protection mechanism failure for some Intel(R) Arc(TM) graphics cards A770 and A750 Limited Edition sold between October of 2022 and December of 2022 may allow a privileged user to potentially enable denial of service via local access.
Intel Arc A750 Firmware -
Intel Arc A770 Firmware -
NA
CVE-2022-38973
Improper access control for some Intel(R) Arc(TM) graphics cards A770 and A750 Limited Edition sold between October of 2022 and December of 2022 may allow an authenticated user to potentially enable denial of service or infomation disclosure via local access.
Intel Arc A750 Firmware -
Intel Arc A770 Firmware -
5
CVSSv2
CVE-2020-26868
ARC Informatique PcVue prior to version 12.0.17 is vulnerable to a denial-of-service attack due to the ability of an unauthorized user to modify information used to validate messages sent by legitimate web clients. This issue also affects third-party systems based on the Web Serv...
Pcvuesolutions Pcvue
5.8
CVSSv2
CVE-2015-7285
CSL DualCom GPRS CS2300-R devices with firmware 1.25 up to and including 3.53 do not require authentication from Alarm Receiving Center (ARC) servers, which allows man-in-the-middle malicious users to bypass intended access restrictions via a spoofed HSxx response.
Csl Dualcom Gprs Cs2300-r Firmware 1.25
Csl Dualcom Gprs Cs2300-r Firmware 3.53
1 Article
NA
CVE-2023-5938
Multiple functions use archives without properly validating the filenames therein, rendering the application vulnerable to path traversal via 'zip slip' attacks. An administrator able to provide tampered archives to be processed by the affected versions of Arc may be ab...
NA
CVE-2023-5935
When configuring Arc (e.g. during the first setup), a local web interface is provided to ease the configuration process. Such web interface lacks authentication and may thus be abused by a local attacker or malware running on the machine itself. A malicious local user or process,...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »