Lucene search
IcscertCVE-2015-0990HistoryApr 03, 2015 - 10:59 a.m.
CVE-2015-0990
2015-04-0310:59:12
icscert
web.nvd.nist.gov
30
cve-2015-0990
ecava integraxor
scada server
vulnerability
local users
privileges
dll
nvd
CVSS2
4.4
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0
Percentile
0.4%
Untrusted search path vulnerability in Ecava IntegraXor SCADA Server before 4.2.4488 allows local users to gain privileges via a renamed DLL in the default install directory.
Affected configurations
Node
ecavaintegraxorRange≤4.1.4450
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ecava | integraxor | * | cpe:2.3:a:ecava:integraxor:*:*:*:*:*:*:*:* |
Related
ics
ics
Ecava IntegraXor DLL Vulnerabilities
2018-08-27 12:00:00
prion
prion
Design/Logic Flaw
2015-04-03 10:59:00
nvd
nvd
CVE-2015-0990
2015-04-03 10:59:12
cvelist
cvelist
CVE-2015-0990
2015-04-03 10:00:00
CVSS2
4.4
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0
Percentile
0.4%
Related for CVE-2015-0990