HIGH🇬🇧 English

CVE-2014-2376

CVSS 7.5v2.0pub. 2014-09-15upd. 2026-05-06

SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

oryginał EN
CVSS Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
  • Ecava Integraxor

    APP
    Ecava
    ≤ 4.1.4392≤ 4.1.4360
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
SQLi
CWE
Referencje

Powiązane podatności

CVE-2017-6050CRITICAL9.8ten sam produkt

A SQL Injection issue was discovered in Ecava IntegraXor Versions 5.2.1231.0 and prior. The application fails ...

CVE-2016-8341CRITICAL9.8ten sam produkt

An issue was discovered in Ecava IntegraXor Version 5.0.413.0. The Ecava IntegraXor web server has parameters ...

CVE-2016-2306HIGH7.5ten sam produkt

The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive clear...

CVE-2016-2299HIGH7.3ten sam produkt

SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to execute arbit...

CVE-2014-2375HIGH8.3ten sam produkt

Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attacker...