Vulnerability in Arcinfo Pcvue
CVE-2026-1698
A HTTP Host header attack vulnerability affects WebClient and the WebScheduler web apps of PcVue in version 15.0.0 through 16.3.3 included, allowing a remote attacker to inject harmful payloads that manipulate server-side behavior. This v…
EPSS: 0.001 (17.9th percentile) — read the EPSS interpretation.
Affected products
- Arcinfo Pcvue — versions 16.0.0, 15.0.0
Weakness classification (CWE)
References
- www.pcvue.com/security/ (vendor-advisory)