CNNVD-202510-3511 Information
CNNVD ID
CNNVD-202510-3511
Related CVE
- CNNVD Published: 2025-10-27
Description (Chinese)
BAE Systems SOCET GXP是美国BAE Systems公司的一款高端地理信息影像分析与测绘软件。 BAE Systems SOCET GXP 4.6.0.2之前版本存在安全漏洞,该漏洞源于Job Status Service未正确清理job ID参数,可能导致跨站脚本攻击。
Description (English)
BAE Systems SOCET GXP is a high-end geographic information image analysis and mapping software for BAE Systems, United States. The previous version of BAE Systems SOCET GXP 4.6.0.2 had a security loophole, which stemmed from the failure of Job Status Service to properly clean up the Job ID parameters and could lead to a cross-site script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
BAE Systems
Published
2025-10-27
Last Modified
2026-02-24
References
https://www.baesystems.com/en-us/product/geospatial-exploitation-products https://www.geospatialexploitationproducts.com/content/socet-gxp/vulnerabilities-disclosure/#cve-2025-54965 https://access.redhat.com/security/cve/cve-2025-54965
Patch
https://www.baesystems.com/en-us/product/geospatial-exploitation-products
Share on: