{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-27T20:10:17.949","vulnerabilities":[{"cve":{"id":"CVE-2014-0752","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2014-01-09T18:07:26.597","lastModified":"2025-08-22T23:15:30.423","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The SCADA server in Ecava IntegraXor before 4.1.4369 allows remote attackers to read arbitrary project backup files via a crafted URL."},{"lang":"es","value":"El servdor SCADA en Ecava IntegraXor anteriores a 4.1.4369 permite a atacantes remotos leer archivos de backup de proyecto de forma arbitraria a través de una URL manipulada."}],"metrics":{"cvssMetricV2":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-529"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-264"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:*:*:*:*:*:*:*:*","versionEndIncluding":"4.1.4360","matchCriteriaId":"6E950E11-0F45-4511-8E94-FA2575BE48F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:3.5.3900.5:*:*:*:*:*:*:*","matchCriteriaId":"024F3AE4-4912-4C4C-859E-3CC832123394"},{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:3.5.3900.10:*:*:*:*:*:*:*","matchCriteriaId":"8E4BEE8F-B1FC-47E0-BF7F-3247A29CCBFF"},{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:3.6.4000.0:*:*:*:*:*:*:*","matchCriteriaId":"B0EB4452-4772-4CA9-A119-A8DFE183CB87"},{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:3.60.4061:*:*:*:*:*:*:*","matchCriteriaId":"66CE22B5-F6B1-4CA5-8975-A0DEA0272E10"},{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:3.71:*:*:*:*:*:*:*","matchCriteriaId":"8C338B7E-B958-4ED4-AF3C-B64A72CA01A6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:3.71.4200:*:*:*:*:*:*:*","matchCriteriaId":"B6BE9299-0D5D-4FDF-8E5C-17EBB3E3D895"},{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:3.72:*:*:*:*:*:*:*","matchCriteriaId":"C4717F90-420C-40C1-B465-2052F5F5D8F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:4.00:*:*:*:*:*:*:*","matchCriteriaId":"04D6E69A-AE18-4B23-95CA-85C605E5F23B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ecava:integraxor:4.1:*:*:*:*:*:*:*","matchCriteriaId":"6C254168-384E-4B0A-BB22-445D7281FAC8"}]}]}],"references":[{"url":"http://www.integraxor.com/blog/category/security/vulnerability-note/","source":"ics-cert@hq.dhs.gov","tags":["Patch","Vendor Advisory"]},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-14-008-01","source":"ics-cert@hq.dhs.gov"},{"url":"http://ics-cert.us-cert.gov/advisories/ICSA-14-008-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","US Government Resource"]},{"url":"http://www.integraxor.com/blog/category/security/vulnerability-note/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}