Vulnerabilities

CVE-2025-4384

by Fred · 06/05/2025

The MQTT add-on of PcVue fails to verify that a remote device’s certificate has not already expired or has not yet become valid. This allows malicious devices to present certificates that are not rejected properly.

The use of a client certificate reduces the risk for random devices to take advantage of this flaw.

More information : https://www.pcvue.com/security/#SB2025-3

Similar

Tags: Cybersecurity Alert