Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-37953

An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST (<v07.09.15) and could allow an attacker to compromise a victim’s browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than if the attack were conducted on the software in isolation. WorkstationST v07.09.15 can be found in ControlST v07.09.07 SP8 and greater.

CVE
Open in Source
#vulnerability#pdf

%PDF-1.7 %���� 81 0 obj <> endobj xref 81 44 0000000016 00000 n 0000001652 00000 n 0000001799 00000 n 0000001841 00000 n 0000002254 00000 n 0000002513 00000 n 0000002678 00000 n 0000002994 00000 n 0000003167 00000 n 0000003403 00000 n 0000003727 00000 n 0000003980 00000 n 0000004031 00000 n 0000004082 00000 n 0000004249 00000 n 0000004814 00000 n 0000005380 00000 n 0000006189 00000 n 0000006326 00000 n 0000006348 00000 n 0000006571 00000 n 0000006867 00000 n 0000006894 00000 n 0000007020 00000 n 0000007181 00000 n 0000007926 00000 n 0000008589 00000 n 0000009391 00000 n 0000010118 00000 n 0000010883 00000 n 0000011112 00000 n 0000011146 00000 n 0000011301 00000 n 0000017419 00000 n 0000017489 00000 n 0000046439 00000 n 0000103056 00000 n 0000103126 00000 n 0000103380 00000 n 0000103722 00000 n 0000103889 00000 n 0000103916 00000 n 0000001483 00000 n 0000001176 00000 n trailer <]/Prev 121221/XRefStm 1483>> startxref 0 %%EOF 124 0 obj <>stream h�b```�+ l J| �  �ac`a��aخ���p��u�*,<&�5��d�2���������@������ 6�w�i ���10�0�3�e�gTc��p�Q��9�,Nd�gR`f(�:�(tOC7�e�Ff��L��3�0��_`0(d�+�`���сa"+c�o�� ���d`��r �b ����������x�D�� ��-1 endstream endobj 123 0 obj <>/Filter/FlateDecode/Index[13 68]/Length 21/Size 81/Type/XRef/W[1 1 1]>>stream h�bb�d`b``� `x�� endstream endobj 82 0 obj <>/Metadata 11 0 R/Pages 10 0 R/StructTreeRoot 13 0 R/Type/Catalog/ViewerPreferences 83 0 R>> endobj 83 0 obj <> endobj 84 0 obj <>/MediaBox[0 0 612 792]/Parent 10 0 R/Resources<>/Font<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI]>>/Rotate 0/StructParents 0/Tabs/S/Type/Page>> endobj 85 0 obj <>/BS<>/F 4/Rect[69.75 508.42 88.154 530.07]/StructParent 1/Subtype/Link>> endobj 86 0 obj <>/BS<>/F 4/Rect[300.75 161.06 463.91 182.72]/StructParent 2/Subtype/Link>> endobj 87 0 obj [226 0 0 0 0 0 0 221 303 303 0 0 0 306 252 386 507 507 507 507 0 507 0 507 0 507 0 0 0 0 0 0 0 579 0 533 0 488 459 631 623 252 0 0 420 855 646 0 517 0 543 459 487 0 567 890 0 0 0 0 0 0 0 0 0 479 525 423 525 498 305 471 525 230 239 455 230 799 525 527 525 525 349 391 335 525 452 715 0 453 395 0 460] endobj 88 0 obj <> endobj 89 0 obj <> endobj 90 0 obj [215 0 0 0 0 0 0 188 316 316 0 0 200 340 200 350 532 532 532 532 0 532 532 532 532 532 212 0 532 532 532 0 0 609 0 597 645 527 502 660 668 244 0 0 0 777 0 694 545 0 567 522 500 636 587 936 0 0 0 0 0 0 0 0 0 505 535 452 535 508 295 483 539 232 0 479 232 826 539 530 535 0 354 445 355 533 459 738 458 459 438] endobj 91 0 obj <> endobj 92 0 obj <> endobj 93 0 obj <> endobj 94 0 obj <> endobj 95 0 obj <>stream H�ĕ[k�0�� ��QD�͒ ���i�A � }(}��5k��VW��’��a�<�k6?d��;W����7����I<�����-\Ņ�]��~��uY�Mik����W�>�r���S����{L��Q��*c��0��M̊0��)�g��0�� �a�(A��w������dR�Bx�dmuP�=�e\���k(>��™��a����g�^���2�%���&/u;"��.>�F� '���s&0�9�#M�<����4��h���L���x�/�� � ���8�C�X�!�3c��� ���7O����e�`�����C’�z�(a�� �C�S��qhu��W�j�� ��ˠ�G"3��xn@N}�%^*�<7�ݧ�4�[?$�Eu��b�d�j�4M^ O��SQ��ᴓ1Q$��IF J���$>Y�ۙ��~ �����?�"�M�5PG j`���1������6�HT���y�n*�<�� �C endstream endobj 96 0 obj <>stream H���mk�0����T��gYP ��u��l/�^l���&k�t[`~w�V��Y����N?�’���e1k��MY<�����4H�؆�a������� �/4('���,�IP`�ڃ�Z ͒Bi���:j�v��雽�(�l�?B3�@ޠ�������^%nX{�e��I��P��`�Xa�~���İو@>��g�(�5�O�1e���#"EO00�����yFL�����T�LE�8���� Eyط�LW��qQxݕ��Ȩꜯ�����l^L/��x:�_��:9����W<�JH�[M�z3\�����’�ؚO,��e�K)O�/����%�Q8U �w�@H�����˦��y��B ;x]p%Yg�&�����l��Z��p����w��� �d���e�r�B��h��������\a�^�]D��9�YpAhn�4���h 5����>�%���ʼ���Z �əY��7�B�g�O��� endstream endobj 97 0 obj <>stream H���QO�0��#�;���iu�$v �@a�&!1Z����@��&]���wg7��!&-�Dq�;��~wgǃ��x��u��K.�o�$`��K�*Zns1� ��+V��z��X|q����|u��x���H<��%>4��\���uN�p�Q��� a�t�vH�|��!h/ ,�$hPuU7|�������d�i�ylu�p͸��ѣ 4��&iK]sH� x�n��� }!-���� H�@e�-9���}�4���j@o{�zC�� Z�2g.�����N�Tl��m�O|v��x�Ckm/�b������i�J����^�@y�-"��,�N�w�S������MN� A:X��(����.�|��r�� ����m��o��G(бP�k���L�4�*��$��Ȗ�X�P6��c|�\CwRm�5�_E���"����f#�UW�"i���Ƹ�L����� 3r��h�^,�o��g��1��X�p��0d]+d�����30u��mM�l�r�ⱑd����.�a0C� ,���+�)̀���H:I��H�q��㦀����,����x��n���™9�������G�xR� ��"c~�!�gt� �

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE