Information disclosure in Ecava Integraxor

CVE-2014-2377

Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.

EPSS: 0.005 (67.1th percentile) — read the EPSS interpretation.

Affected products

Ecava Integraxor
Ecava Integraxor Scada Server — versions 0

Weakness classification (CWE)

References

ics-cert@hq.dhs.gov
af854a3a-2127-422b-91ae-364da2661108 (Third Party Advisory, US Government Resource)