exploitDog

CVE-2025-0596

Опубликовано: 17 мар. 2025

Источник: nvd

CVSS3: 8.7

CVSS3: 5.4

EPSS Низкий

Описание

A stored Cross-site Scripting (XSS) vulnerability affecting Bookmark Editor in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

Ссылки

https://www.3ds.com/vulnerability/advisories
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:3ds:3dexperience_enovia:r2024x:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00079

Низкий

8.7 High

CVSS3

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-25cf-wq2p-gqxf

CVSS3: 8.7

github

11 месяцев назад

A stored Cross-site Scripting (XSS) vulnerability affecting Bookmark Editor in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

EPSS

Процентиль: 23%

0.00079

Низкий

8.7 High

CVSS3

5.4 Medium

CVSS3

Дефекты

CWE-79