CNNVD-202510-3519 Information
CNNVD ID
CNNVD-202510-3519
Related CVE
- CNNVD Published: 2025-10-27
Description (Chinese)
BAE Systems SOCET GXP是美国BAE Systems公司的一款高端地理信息影像分析与测绘软件。 BAE Systems SOCET GXP 4.6.0.2之前版本存在安全漏洞,该漏洞源于SOCET GXP Job Status Service未实现CSRF保护,可能导致跨站请求伪造攻击。
Description (English)
BAE Systems SOCET GXP is a high-end geographic information image analysis and mapping software for BAE Systems, United States. The previous version of BAE Systems SOCET GXP 4.6.0.2 had a security loophole, which originated from the failure of SOCET GXP Job Status Service to achieve CSRF protection, which could lead to cross-site requests for false attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
BAE Systems
Published
2025-10-27
Last Modified
2026-02-24
References
https://www.baesystems.com/en-us/product/geospatial-exploitation-products https://www.geospatialexploitationproducts.com/content/socet-gxp/vulnerabilities-disclosure/#cve-2025-54969 https://access.redhat.com/security/cve/cve-2025-54969
Patch
https://www.baesystems.com/en-us/product/geospatial-exploitation-products
Share on: