Vulnerability Details CVE-2015-0990
Untrusted search path vulnerability in Ecava IntegraXor SCADA Server before 4.2.4488 allows local users to gain privileges via a renamed DLL in the default install directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.4%
CVSS Severity
CVSS v2 Score 4.4
References
Products affected by CVE-2015-0990
-
cpe:2.3:a:ecava:integraxor:3.5.3900.10
-
cpe:2.3:a:ecava:integraxor:3.5.3900.5
-
cpe:2.3:a:ecava:integraxor:3.6.4000.0
-
cpe:2.3:a:ecava:integraxor:3.60.4061
-
cpe:2.3:a:ecava:integraxor:3.71
-
cpe:2.3:a:ecava:integraxor:3.71.4200
-
cpe:2.3:a:ecava:integraxor:3.72
-
cpe:2.3:a:ecava:integraxor:4.00
-
cpe:2.3:a:ecava:integraxor:4.1
-
cpe:2.3:a:ecava:integraxor:4.1.4340
-
cpe:2.3:a:ecava:integraxor:4.1.4360
-
cpe:2.3:a:ecava:integraxor:4.1.4369
-
cpe:2.3:a:ecava:integraxor:4.1.4380
-
cpe:2.3:a:ecava:integraxor:4.1.4390
-
cpe:2.3:a:ecava:integraxor:4.1.4393
-
cpe:2.3:a:ecava:integraxor:4.1.4450