CVE-2014-0752

The SCADA server in Ecava IntegraXor before 4.1.4369 allows remote attackers to read arbitrary project backup files via a crafted URL.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
icscertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
VendorProductVersion
ecavaintegraxor
𝑥
≤ 4.1.4360
ecavaintegraxor
3.5.3900.5
ecavaintegraxor
3.5.3900.10
ecavaintegraxor
3.6.4000.0
ecavaintegraxor
3.60.4061
ecavaintegraxor
3.71
ecavaintegraxor
3.71.4200
ecavaintegraxor
3.72
ecavaintegraxor
4.00
ecavaintegraxor
4.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://ics-cert.us-cert.gov/advisories/ICSA-14-008-01
http://www.integraxor.com/blog/category/security/vulnerability-note/
http://ics-cert.us-cert.gov/advisories/ICSA-14-008-01
http://www.integraxor.com/blog/category/security/vulnerability-note/