2 matches found
CVE-2022-37953
CVE-2022-37953 affects General Electric WorkstationST prior to 07.09.15, with an HTTP response splitting vulnerability in the AM Gateway Challenge-Response dialog. The root cause is improper handling of CRLF sequences in HTTP headers, which could allow an attacker to compromise a victim’s browser...
CVE-2022-37952
General Electric WorkstationST is affected by a reflected XSS in the iHistorian Data Display, specifically in WorkstationST versions prior to 07.09.15. The issue impacts the iHistorian Data Display component and can allow an attacker to compromise a victim’s browser. WorkstationST v07.09.15 is re...