Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in BAE SOCET GXP before 4.6.0.2. An attacker with the ability to interact with the GXP Job Service may submit a crafted job request that grants read access to files on the filesystem with the permissions of the GXP Job Service process. The path to a file is not sanitized for directory traversal, potentially allowing an attacker to read sensitive files in some configurations.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BAE Systems SOCET GXP 安全漏洞
Vulnerability Description
BAE Systems SOCET GXP是美国BAE Systems公司的一款高端地理信息影像分析与测绘软件。 BAE Systems SOCET GXP 4.6.0.2之前版本存在安全漏洞,该漏洞源于未对文件路径进行清理,可能导致目录遍历攻击和敏感文件读取。
CVSS Information
N/A
Vulnerability Type
N/A