How severe is CVE-2025-4384?

The severity of CVE-2025-4384 has not been assessed with CVSS v3.

CVE-2025-4384

NONE

The MQTT add-on of PcVue fails to verify that a remote device’s certificate has not already expired or has not yet become valid. This allows malicious devices to present certificates that are not reje

Опубликовано: 5/6/2025Обновлено: 5/7/2025

Описание

The MQTT add-on of PcVue fails to verify that a remote device’s certificate has not already expired or has not yet become valid. This allows malicious devices to present certificates that are not rejected properly. The use of a client certificate reduces the risk for random devices to take advantage of this flaw.

ИИ-АнализНа базе ИИ

Ссылки

https://www.pcvue.com/security/#SB2025-3