CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

213 matches found

Dassault Systèmes DELMIA Service Process Engineer security vulnerabilities

Dassault Systèmes DELMIA Service Process Engineer is a process planning software developed by Dassault Systèmes, a French company. There are security vulnerabilities in Dassault Systèmes DELMIA Service Process Engineer versions from 3DEXPERIENCE R2024x to 3DEXPERIENCE R2026x. These vulnerabilitie...

8.7CVSS6AI score0.00032EPSS

Exploits0References1

CVE•added 2026/03/31 8:38 a.m.•4 views

CVE-2025-10551

ENOVIA Collaborative Industry Innovator – Document Management (3DEXPERIENCE) is affected by CVE-2025-10551 in releases R2023x through R2025x. It is a Stored XSS vulnerability that could allow an attacker to execute arbitrary script in a user’s browser session. CVSSv3.1 base score 8.7 (High): AV:N...

8.7CVSS6.2AI score0.00037EPSS

Exploits0References1Affected Software1

NVD•added 2025/11/24 4:15 p.m.•3 views

CVE-2025-10554

A stored Cross-site Scripting XSS vulnerability affecting Requirements in ENOVIA Product Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00026EPSS

Exploits0References1

OSV•added 2025/11/24 4:15 p.m.•1 views

CVE-2025-10554

5.4CVSS6AI score0.00026EPSS

Exploits0References1

CVE•added 2025/11/24 3:31 p.m.•4 views

CVE-2025-10554

Summary: CVE-2025-10554 affects Dassault Systèmes ENOVIA Product Manager (3DEXPERIENCE) in the Requirements area from R2023x to R2025x. It is a stored XSS vulnerability that allows an attacker to execute arbitrary script code in a user’s browser session. The provided documents do not specify the ...

8.7CVSS6.1AI score0.00026EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/11/24 12:0 a.m.•2 views

Dassault Systèmes DELMIA Service Process Engineer 安全漏洞

Dassault Systèmes DELMIA Service Process Engineer is a process planning software from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes DELMIA Service Process Engineer Release 3DEXPERIENCE R2025x, which stems from a stored cross-site scripting vulnerability that could...

8.7CVSS6AI score0.00027EPSS

Exploits0References2

EUVD•added 2025/10/13 9:30 a.m.•2 views

EUVD-2025-34046

A stored Cross-site Scripting XSS vulnerability affecting 3DSearch in 3DSwymer on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6AI score0.00028EPSS

Exploits0References2

NVD•added 2025/10/13 8:15 a.m.•4 views

CVE-2025-10556

A stored Cross-site Scripting XSS vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00028EPSS

Exploits0References1

NVD•added 2025/10/13 8:15 a.m.•2 views

CVE-2025-10558

A stored Cross-site Scripting XSS vulnerability affecting 3DSearch in 3DSwymer on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00028EPSS

Exploits0References1

Cvelist•added 2025/10/13 7:36 a.m.•5 views

CVE-2025-10558 Stored Cross-site Scripting (XSS) vulnerability affecting 3DSearch in 3DSwymer on Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting 3DSearch in 3DSwymer on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00028EPSS

Exploits0References1

CVE•added 2025/10/13 7:36 a.m.•7 views

CVE-2025-10552

The CVE-2025-10552 entry describes a stored Cross‑site Scripting (XSS) vulnerability in 3DSwym on the 3DEXPERIENCE platform (R2025x). The vulnerability affects 3DSwym prior to Release R2025x and allows an attacker to execute arbitrary script in a user’s browser session. The PT-2025-41765 advisory...

8.7CVSS6.1AI score0.00028EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/10/13 7:33 a.m.•6 views

CVE-2025-9976 OS Command Injection vulnerability affecting Station Launcher App in 3DEXPERIENCE platform from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

An OS Command Injection vulnerability affecting Station Launcher App in 3DEXPERIENCE platform from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x could allow an attacker to execute arbitrary code on the user's machine...

9CVSS0.00067EPSS

Exploits0References1

Positive Technologies•added 2025/10/13 12:0 a.m.•1 views

PT-2025-41776

Name of the Vulnerable Software and Affected Versions 3DEXPERIENCE versions R2022x through R2025x Description An OS Command Injection vulnerability exists in the Station Launcher App within the 3DEXPERIENCE platform. This issue could allow an attacker to execute arbitrary code on a user’s machine...

9CVSS7.8AI score0.00067EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-48613

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00739EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-47484

Malicious code in bioql PyPI...

8.1CVSS6.6AI score0.00409EPSS

Exploits0References1