MEDIUM🇵🇱 Wersja polska

CVE-2014-2377

CVSS 5.0v2.0pub. 2014-09-15upd. 2026-05-06

Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.

CVSS Vector
AV:N/AC:L/Au:N/C:N/I:P/A:N
  • Ecava Integraxor

    APP
    Ecava
    ≤ 4.1.4360≤ 4.1.4392
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2017-6050CRITICAL9.8ten sam produkt

A SQL Injection issue was discovered in Ecava IntegraXor Versions 5.2.1231.0 and prior. The application fails ...

CVE-2016-8341CRITICAL9.8ten sam produkt

An issue was discovered in Ecava IntegraXor Version 5.0.413.0. The Ecava IntegraXor web server has parameters ...

CVE-2016-2306HIGH7.5ten sam produkt

The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive clear...

CVE-2016-2299HIGH7.3ten sam produkt

SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to execute arbit...

CVE-2014-2376HIGH7.5ten sam produkt

SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and...