Vulnerabilities (CVE)

Filtered by vendor Systematicinc Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-18926 1 Systematicinc 1 Iris Standards Management 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
Systematic IRIS Standards Management (ISM) v2.1 SP1 89 is vulnerable to unauthenticated reflected Cross Site Scripting (XSS). A user input (related to dialog information) is reflected directly in the web page, allowing a malicious user to conduct a Cross Site Scripting attack against users of the application.
CVE-2018-9115 1 Systematicinc 1 Sitaware 2024-02-04 5.0 MEDIUM 5.3 MEDIUM
Systematic SitaWare 6.4 SP2 does not validate input from other sources sufficiently. e.g., information utilizing the NVG interface. An attacker can freeze the Situational Layer, which means that the Situational Picture is no longer updated. Unfortunately, the user cannot notice until he tries to work with that layer.