PT-2026-22129 · Schneider Electric · Pcvue
Published
2026-02-26
·
Updated
2026-03-12
·
CVE-2026-1697
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
PcVue versions 12.0.0 through 16.3.3
Description
The Secure and SameSite attributes are missing in the GraphicalData web services and WebClient web app. This could potentially allow for certain attacks related to cookie handling.
Recommendations
Update to a version later than 16.3.3.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Pcvue