← back
CVE-2014-2377

Ecava IntegraXor SCADA Server Information Exposure Through Environmental Variables

CVSS 5 EPSS 1.8%CWE-526
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.
AV:N/AC:L/Au:N/C:N/I:P/A:N
Affected products
Ecava · IntegraXor SCADA Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-14-224-01https://www.cisa.gov/news-events/ics-advisories/icsa-14-224-01