CVE-2014-2377

Ecava IntegraXor SCADA Server Information Exposure Through Environmental Variables

CVSS 5 EPSS 1.8%CWE-526

Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.

AV:N/AC:L/Au:N/C:N/I:P/A:N

Produtos afetados

Ecava · IntegraXor SCADA Server

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://ics-cert.us-cert.gov/advisories/ICSA-14-224-01 https://www.cisa.gov/news-events/ics-advisories/icsa-14-224-01