{"cve":{"cve_id":"CVE-2026-1693","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00314,"epss_percentile":0.22961,"epss_as_of":"2026-06-23","description":"The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservices used by the WebVue, WebScheduler, TouchVue and Snapvue features of PcVue in version 12.0.0 through 16.3.3 included despite being deprecated. It might allow a remote attacker to steal user credentials.","published_at":"2026-02-26T07:56:10.326000Z","last_modified_at":null,"cvss_v3_score":null,"cvss_v3_vector":null,"cvss_v3_severity":null,"cvss_v4_score":5.3,"cvss_v4_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/AU:Y/R:U/RE:M/U:Clear","cvss_v4_severity":"MEDIUM","ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-1390","CWE-477"],"nvd_references":["https://www.pcvue.com/security/#SB2026-2"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:29:00.212646Z"},"effective_severity":"MEDIUM","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":null,"metrics":[]},"cvss_v4_decoded":{"version":"4.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"AT","name":"Attack Requirements","value":"N","value_label":"None"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"P","value_label":"Passive"},{"metric":"VC","name":"Confidentiality (Vulnerable System)","value":"L","value_label":"Low"},{"metric":"VI","name":"Integrity (Vulnerable System)","value":"N","value_label":"None"},{"metric":"VA","name":"Availability (Vulnerable System)","value":"N","value_label":"None"},{"metric":"SC","name":"Confidentiality (Subsequent System)","value":"L","value_label":"Low"},{"metric":"SI","name":"Integrity (Subsequent System)","value":"N","value_label":"None"},{"metric":"SA","name":"Availability (Subsequent System)","value":"N","value_label":"None"},{"metric":"AU","name":"AU","value":"Y","value_label":"Y"},{"metric":"R","name":"R","value":"U","value_label":"Unchanged"},{"metric":"RE","name":"RE","value":"M","value_label":"M"},{"metric":"U","name":"U","value":"Clear","value_label":"Clear"}]},"affected":[{"vendor_slug":"arcinfo","vendor_name":"arcinfo","product_slug":"pcvue","product_name":"PcVue","version_start":"16.0.0","version_start_inclusive":true,"version_end":"16.3.3","version_end_inclusive":true,"cpe23_uri":"cve5:arcinfo:pcvue:16.0.0:16.3.3"},{"vendor_slug":"arcinfo","vendor_name":"arcinfo","product_slug":"pcvue","product_name":"PcVue","version_start":"15.0.0","version_start_inclusive":true,"version_end":"15.2.13","version_end_inclusive":true,"cpe23_uri":"cve5:arcinfo:pcvue:15.0.0:15.2.13"},{"vendor_slug":"arcinfo","vendor_name":"arcinfo","product_slug":"pcvue","product_name":"PcVue","version_start":"12.0.0","version_start_inclusive":true,"version_end":"12.0.0","version_end_inclusive":true,"cpe23_uri":"cve5:arcinfo:pcvue:12.0.0:12.0.0"}],"exploit_refs":[],"news":[],"references":[{"url":"https://www.pcvue.com/security/#SB2026-2","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2026-02-26T07:56:10.326000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:50:49.858932Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:50:49.858932Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:50:49.858932Z","label":"CVSS score revised","source":"cvelistv5"}]}