28 matches found
CVE-2022-37952 WorkstationST - Reflected XSS in iHistorian Data Display Tags
A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...
CVE-2022-37953 WorkstationST - Response Splitting in AM Gateway Challenge-Response
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST v07.09.15 and could allow an attacker to compromise a victim's browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantl...
CVE-2022-37953
CVE-2022-37953 affects General Electric WorkstationST prior to 07.09.15, with an HTTP response splitting vulnerability in the AM Gateway Challenge-Response dialog. The root cause is improper handling of CRLF sequences in HTTP headers, which could allow an attacker to compromise a victim’s browser...
General Electric WorkstationST 安全漏洞
General Electric WorkstationST is an alarm viewer in a software suite from General Electric, USA. A security vulnerability exists in General Electric WorkstationST versions prior to 07.09.15 that stems from an HTTP response splitting vulnerability in the AM Gateway Challenge-Response dialog. An...
General Electric WorkstationST 跨站脚本漏洞
General Electric WorkstationST is an alarm viewer in a software suite from General Electric, USA. A security vulnerability exists in General Electric WorkstationST versions prior to 07.09.15, which stems from a cross-site scripting vulnerability in iHistorian Data Display. An attacker could explo...
CVE-2022-37953
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST...
PT-2022-4457 · Unknown · Workstation
Name of the Vulnerable Software and Affected Versions: WorkstationST versions prior to 07.09.15 Description: The issue is related to an HTTP response splitting vulnerability in the AM Gateway Challenge-Response dialog of WorkstationST. This vulnerability could allow a remote attacker to compromis...
PT-2022-4454 · Unknown · Workstation
Name of the Vulnerable Software and Affected Versions: WorkstationST versions prior to 07.09.15 Description: A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST, which could allow an attacker to compromise a victim's browser. The vulnerability...