ICSA-11-340-01
·
Published 2025-06-09
·
View on CISA ICS-CERT ↗
ARC Informatique PcVue HMI/SCADA ActiveX Vulnerabilities
CVSS 9.3
CRITICAL
CVEs (2)
Remediations
- ARC Informatique has released a patch to their customers to address these vulnerabilities. Users of vulnerable versions of ARC Informatique’s PcVue should deploy the patch. For more information, please refer to the ARC Informatique security bulletin.
- For more information about securing Internet Explorer web browsers with regard to ActiveX execution, please refer to the following US-CERT document Securing your Web browser. (https://www.cisa.gov/sites/default/files/2023-09/CISA%20CEG%20Securing%20Web%20Browsers%20And%20Defending%20Against%20Malvertising.pdf)
Affected Vendors
ARC Informatique
Affected Products (3)
ARC Informatique
·
PcVue
>=6.xx
ARC Informatique
·
FrontVue
vers:all/*
ARC Informatique
·
PlantVue
vers:all/*
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more