28 matches found
EUVD-2022-40559
Malicious code in bioql PyPI...
EUVD-2022-40560
Malicious code in bioql PyPI...
EUVD-2025-15794
Malicious code in bioql PyPI...
CVE-2025-3223
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in GE Vernova WorkstationST on Windows EGD Configuration Server modules allows Path Traversal.This issue affects WorkstationST: WorkstationST V07.10.10C and earlier...
CVE-2025-3223
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in GE Vernova WorkstationST on Windows EGD Configuration Server modules allows Path Traversal.This issue affects WorkstationST: WorkstationST V07.10.10C and earlier...
CVE-2025-3223
The CVE-2025-3223 entry concerns GE Vernova WorkstationST on Windows, specifically the EGD Configuration Server modules. The vulnerability is caused by improper limitation of a pathname to a restricted directory, enabling a path traversal in WorkstationST versions V07.10.10C and earlier. Document...
CVE-2025-3223 WorkstationST EGD Configuration Server Path Traversal Vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in GE Vernova WorkstationST on Windows EGD Configuration Server modules allows Path Traversal.This issue affects WorkstationST: WorkstationST V07.10.10C and earlier...
CVE-2025-3223 WorkstationST EGD Configuration Server Path Traversal Vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in GE Vernova WorkstationST on Windows EGD Configuration Server modules allows Path Traversal.This issue affects WorkstationST: WorkstationST V07.10.10C and earlier...
PT-2025-22085 · Ge · Ge Vernova Workstationst
Name of the Vulnerable Software and Affected Versions: GE Vernova WorkstationST versions V07.10.10C and earlier Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability, in the EGD Configuration Server...
GE Vernova WorkstationST 安全漏洞
GE Vernova WorkstationST is a workstation software for industrial control systems ICS from GE Vernova, Inc. that provides data acquisition, process monitoring, and automation control functions. A security vulnerability exists in GE Vernova WorkstationST V07.10.10C and earlier versions, which stem...
The vulnerability of the OPC server WorkstationST, related to incorrect restrictions on the path name to the directory, allows a hacker to gain access to the server’s directory.
The vulnerability of the OPC server WorkstationST is related to an incorrect limitation on the path name to the directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to the server’s directory...
PT-2024-7541 · Unknown · Workstation
Name of the Vulnerable Software and Affected Versions: WorkstationST affected versions not specified Description: The issue is related to incorrect restriction of the directory path name in the OPC server. Exploitation of this issue may allow a remote attacker to gain access to the server...
The vulnerability of the display on the iHistorian Data Display OPC-server for WorkstationST allows a attacker to perform XSS attacks.
The vulnerability of the iHistorian Data Display OPC-server workstation exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
CVE-2022-37952
A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...
CVE-2022-37952
A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...
CVE-2022-37953
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST v07.09.15 and could allow an attacker to compromise a victim's browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantl...
CVE-2022-37953
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST v07.09.15 and could allow an attacker to compromise a victim's browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantl...
Cross site scripting
A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...
Design/Logic Flaw
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST v07.09.15 and could allow an attacker to compromise a victim's browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantl...
CVE-2022-37952
General Electric WorkstationST is affected by a reflected XSS in the iHistorian Data Display, specifically in WorkstationST versions prior to 07.09.15. The issue impacts the iHistorian Data Display component and can allow an attacker to compromise a victim’s browser. WorkstationST v07.09.15 is re...