26 matches found
EUVD-2025-15794
Malicious code in bioql PyPI...
EUVD-2022-40560
Malicious code in bioql PyPI...
EUVD-2022-40559
Malicious code in bioql PyPI...
CVE-2025-3223
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in GE Vernova WorkstationST on Windows EGD Configuration Server modules allows Path Traversal.This issue affects WorkstationST: WorkstationST V07.10.10C and earlier...
CVE-2025-3223
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in GE Vernova WorkstationST on Windows EGD Configuration Server modules allows Path Traversal.This issue affects WorkstationST: WorkstationST V07.10.10C and earlier...
CVE-2025-3223 WorkstationST EGD Configuration Server Path Traversal Vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in GE Vernova WorkstationST on Windows EGD Configuration Server modules allows Path Traversal.This issue affects WorkstationST: WorkstationST V07.10.10C and earlier...
CVE-2025-3223
The CVE-2025-3223 entry concerns GE Vernova WorkstationST on Windows, specifically the EGD Configuration Server modules. The vulnerability is caused by improper limitation of a pathname to a restricted directory, enabling a path traversal in WorkstationST versions V07.10.10C and earlier. Document...
CVE-2025-3223 WorkstationST EGD Configuration Server Path Traversal Vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in GE Vernova WorkstationST on Windows EGD Configuration Server modules allows Path Traversal.This issue affects WorkstationST: WorkstationST V07.10.10C and earlier...
GE Vernova WorkstationST 安全漏洞
GE Vernova WorkstationST is a workstation software for industrial control systems ICS from GE Vernova, Inc. that provides data acquisition, process monitoring, and automation control functions. A security vulnerability exists in GE Vernova WorkstationST V07.10.10C and earlier versions, which stem...
PT-2025-22085 · Ge · Ge Vernova Workstationst
Name of the Vulnerable Software and Affected Versions: GE Vernova WorkstationST versions V07.10.10C and earlier Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability, in the EGD Configuration Server...
PT-2024-7541 · Unknown · Workstation
Name of the Vulnerable Software and Affected Versions: WorkstationST affected versions not specified Description: The issue is related to incorrect restriction of the directory path name in the OPC server. Exploitation of this issue may allow a remote attacker to gain access to the server...
CVE-2022-37953
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST v07.09.15 and could allow an attacker to compromise a victim's browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantl...
CVE-2022-37952
A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...
CVE-2022-37953
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST v07.09.15 and could allow an attacker to compromise a victim's browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantl...
CVE-2022-37952
A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...
Design/Logic Flaw
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST v07.09.15 and could allow an attacker to compromise a victim's browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantl...
Cross site scripting
A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...
CVE-2022-37952 WorkstationST - Reflected XSS in iHistorian Data Display Tags
A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...
CVE-2022-37952
General Electric WorkstationST is affected by a reflected XSS in the iHistorian Data Display, specifically in WorkstationST versions prior to 07.09.15. The issue impacts the iHistorian Data Display component and can allow an attacker to compromise a victim’s browser. WorkstationST v07.09.15 is re...
CVE-2022-37953
CVE-2022-37953 affects General Electric WorkstationST prior to 07.09.15, with an HTTP response splitting vulnerability in the AM Gateway Challenge-Response dialog. The root cause is improper handling of CRLF sequences in HTTP headers, which could allow an attacker to compromise a victim’s browser...