HIGH🇬🇧 English

CVE-2014-2375

CVSS 8.3v2.0pub. 2014-09-15upd. 2026-05-06

Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial of service (disk consumption), via the CSV export feature.

oryginał EN
CVSS Vector
AV:N/AC:M/Au:N/C:P/I:P/A:C
  • Ecava Integraxor

    APP
    Ecava
    ≤ 4.1.4360≤ 4.1.4392
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2017-6050CRITICAL9.8ten sam produkt

A SQL Injection issue was discovered in Ecava IntegraXor Versions 5.2.1231.0 and prior. The application fails ...

CVE-2016-8341CRITICAL9.8ten sam produkt

An issue was discovered in Ecava IntegraXor Version 5.0.413.0. The Ecava IntegraXor web server has parameters ...

CVE-2016-2306HIGH7.5ten sam produkt

The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive clear...

CVE-2016-2299HIGH7.3ten sam produkt

SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to execute arbit...

CVE-2014-2376HIGH7.5ten sam produkt

SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and...