Lucene search
K

28 matches found

Cvelist
Cvelist
added 2022/08/25 5:26 p.m.25 views

CVE-2022-37952 WorkstationST - Reflected XSS in iHistorian Data Display Tags

A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...

4.7CVSS6.1AI score0.00328EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/08/25 5:26 p.m.34 views

CVE-2022-37953 WorkstationST - Response Splitting in AM Gateway Challenge-Response

An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST v07.09.15 and could allow an attacker to compromise a victim's browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantl...

4.7CVSS6.4AI score0.00328EPSS
Exploits0References1
CVE
CVE
added 2022/08/25 5:26 p.m.74 views

CVE-2022-37953

CVE-2022-37953 affects General Electric WorkstationST prior to 07.09.15, with an HTTP response splitting vulnerability in the AM Gateway Challenge-Response dialog. The root cause is improper handling of CRLF sequences in HTTP headers, which could allow an attacker to compromise a victim’s browser...

6.1CVSS5.4AI score0.00328EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/08/25 12:0 a.m.7 views

General Electric WorkstationST 安全漏洞

General Electric WorkstationST is an alarm viewer in a software suite from General Electric, USA. A security vulnerability exists in General Electric WorkstationST versions prior to 07.09.15 that stems from an HTTP response splitting vulnerability in the AM Gateway Challenge-Response dialog. An...

6.1CVSS5.6AI score0.00328EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/08/25 12:0 a.m.6 views

General Electric WorkstationST 跨站脚本漏洞

General Electric WorkstationST is an alarm viewer in a software suite from General Electric, USA. A security vulnerability exists in General Electric WorkstationST versions prior to 07.09.15, which stems from a cross-site scripting vulnerability in iHistorian Data Display. An attacker could explo...

6.1CVSS5.2AI score0.00328EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/08/23 9:0 p.m.5 views

CVE-2022-37953

An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST...

6.1CVSS5.8AI score0.00328EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/08/23 12:0 a.m.5 views

PT-2022-4457 · Unknown · Workstation

Name of the Vulnerable Software and Affected Versions: WorkstationST versions prior to 07.09.15 Description: The issue is related to an HTTP response splitting vulnerability in the AM Gateway Challenge-Response dialog of WorkstationST. This vulnerability could allow a remote attacker to compromis...

6.4CVSS6.3AI score0.00328EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/08/23 12:0 a.m.8 views

PT-2022-4454 · Unknown · Workstation

Name of the Vulnerable Software and Affected Versions: WorkstationST versions prior to 07.09.15 Description: A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST, which could allow an attacker to compromise a victim's browser. The vulnerability...

6.4CVSS6.1AI score0.00328EPSS
Exploits0References4
Rows per page
Query Builder