exploitDog

GHSA-2v78-25vx-vfrh

Опубликовано: 16 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Pega Platform versions 8.7.5 to Infinity 24.2.2 are affected by a Insecure Direct Object Reference issue in a user interface component that can only be used to read data.

Pega Platform versions 8.7.5 to Infinity 24.2.2 are affected by a Insecure Direct Object Reference issue in a user interface component that can only be used to read data.

Ссылки

EPSS

Процентиль: 14%

0.00044

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-639

Связанные уязвимости

CVE-2025-9559

CVSS3: 6.5

nvd

4 месяца назад

Pega Platform versions 8.7.5 to Infinity 24.2.2 are affected by a Insecure Direct Object Reference issue in a user interface component that can only be used to read data.

EPSS

Процентиль: 14%

0.00044

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-639