Ecava Integraxor Scada Server vulnerabilities
3 known vulnerabilities affecting ecava/integraxor_scada_server.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2014-2376P3HIGHCVSS 7.5≤ v4.1.43602014-09-15
CVE-2014-2376 [HIGH] CWE-89 CVE-2014-2376: SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.
SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2014-2375P3CRITICALCVSS 9.0≤ v4.1.43602014-09-15
CVE-2014-2375 [CRITICAL] CWE-73 CVE-2014-2375: Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remot
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial of service (disk consumption), via the CSV export feature.
nvd
CVE-2014-2377P4MEDIUMCVSS 5.0≤ v4.1.43602014-09-15
CVE-2014-2377 [MEDIUM] CWE-526 CVE-2014-2377: Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remot
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.
nvd