VYPR

IntegraXor SCADA Server

by Ecava

CVEs (4)

  • CVE-2015-0990Apr 3, 2015
    risk 0.00cvss epss 0.00

    Untrusted search path vulnerability in Ecava IntegraXor SCADA Server before 4.2.4488 allows local users to gain privileges via a renamed DLL in the default install directory.

  • CVE-2014-2377Sep 15, 2014
    risk 0.00cvss epss 0.02

    Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.

  • CVE-2014-2376Sep 15, 2014
    risk 0.00cvss epss 0.02

    SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2014-2375Sep 15, 2014
    risk 0.00cvss epss 0.02

    Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial of service (disk consumption), via the CSV export feature.