Vulnerabilities > Ecava > High

DATE CVE VULNERABILITY TITLE RISK
2017-06-21 CVE-2017-6050 SQL Injection vulnerability in Ecava Integraxor
A SQL Injection issue was discovered in Ecava IntegraXor Versions 5.2.1231.0 and prior.
network
low complexity
ecava CWE-89
7.5
2017-02-13 CVE-2016-8341 SQL Injection vulnerability in Ecava Integraxor 5.0.413.0
An issue was discovered in Ecava IntegraXor Version 5.0.413.0.
network
low complexity
ecava CWE-89
7.5
2016-04-22 CVE-2016-2306 Cryptographic Issues vulnerability in Ecava Integraxor
The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive cleartext information by sniffing the network.
network
low complexity
ecava CWE-310
7.8
2016-04-22 CVE-2016-2299 SQL Injection vulnerability in Ecava Integraxor
SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
ecava CWE-89
7.5
2014-09-15 CVE-2014-2376 SQL Injection vulnerability in Ecava Integraxor
SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
ecava CWE-89
7.5
2014-01-21 CVE-2014-0753 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ecava Integraxor
Stack-based buffer overflow in the SCADA server in Ecava IntegraXor before 4.1.4390 allows remote attackers to cause a denial of service (system crash) by triggering access to DLL code located in the IntegraXor directory.
network
low complexity
ecava CWE-119
7.8