Vulnerabilities > GE > Workstationst > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-37952 Cross-site Scripting vulnerability in GE Workstationst
A reflected cross-site scripting (XSS) vulnerability exists in the iHistorian Data Display of WorkstationST (<v07.09.15) could allow an attacker to compromise a victim's browser.
network
low complexity
ge CWE-79
6.1
2022-08-25 CVE-2022-37953 Unspecified vulnerability in GE Workstationst
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST (<v07.09.15) and could allow an attacker to compromise a victim's browser/session.
network
low complexity
ge
6.1