CVE-2014-0786

Ecava IntegraXor < 4.1.4393 - Unauthenticated Cleartext Credential Exposure via SELECT Statements

Title source: llm
STIX 2.1

Description

Ecava IntegraXor before 4.1.4393 allows remote attackers to read cleartext credentials for administrative accounts via SELECT statements that leverage the guest role.

References (4)

Core 4
Core References
Third Party Advisory, US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-14-091-01
Third Party Advisory, US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-14-224-01

Scores

EPSS 0.0265
EPSS Percentile 83.8%

Details

CWE
CWE-200 CWE-310
Status published
Products (7)
ecava/integraxor 4.1
ecava/integraxor 4.1.4340
ecava/integraxor 4.1.4360
ecava/integraxor 4.1.4369
ecava/integraxor 4.1.4380
ecava/integraxor < 4.1.4390
Ecava/IntegraXor < 4.1.4410
Published May 01, 2014
Tracked Since Feb 18, 2026