The SCADA server in Ecava IntegraXor before 4.1.4369 allows remote attackers to read arbitrary project backup files via a crafted URL.Referenceshttp://www.integraxor.com/blog/category/security/vulnerability-note/http://ics-cert.us-cert.gov/advisories/ICSA-14-008-01
