CVE-2014-2375

CVE-2014-2375: Ecava IntegraXor SCADA Server External Control of File Name or Path

Vendor Ecava
Product IntegraXor SCADA Server
Weakness CWE-73
Published September 15, 2014
Last update October 13, 2025

CVSS base score

What the vulnerability does

01Description

Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial of service (disk consumption), via the CSV export feature.

Key dates

02Disclosure timeline

September 15, 2014 CVE published
October 13, 2025 Record updated