Описание
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial of service (disk consumption), via the CSV export feature.
Ссылки
- PatchThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 4.1.4360 (включая)
cpe:2.3:a:ecava:integraxor:*:*:*:*:*:*:*:*
Конфигурация 2Версия до 4.1.4392 (включая)
cpe:2.3:a:ecava:integraxor:*:beta:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00562
Низкий
8.3 High
CVSS2
9 Critical
CVSS2
Дефекты
CWE-73
CWE-264
Связанные уязвимости
github
больше 3 лет назад
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial of service (disk consumption), via the CSV export feature.
EPSS
Процентиль: 68%
0.00562
Низкий
8.3 High
CVSS2
9 Critical
CVSS2
Дефекты
CWE-73
CWE-264