Lucene search
+L

213 matches found

CVE
CVE
added 2025/05/30 2:19 p.m.46 views

CVE-2025-4989

CVE-2025-4989 is a stored XSS vulnerability affecting Dassault Systèmes Product Manager (Requirements in 3DEXPERIENCE R2022x–R2025x). The available connected sources confirm a stored XSS flaw in Product Manager’s Requirements that could cause arbitrary script execution in a user’s browser session...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/30 2:16 p.m.4 views

CVE-2025-4990 Stored Cross-site Scripting (XSS) vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS7.8AI score0.00266EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:16 p.m.52 views

CVE-2025-4990

CVE-2025-4990 — Normal mode Affected: Change Governance in Product Manager (Dassault Systèmes 3DEXPERIENCE) from releases R2022x through R2025x. Vulnerability: Stored Cross-site Scripting (XSS) that allows an attacker to inject and execute arbitrary script in a user’s browser session. Root cause/...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:16 p.m.16 views

CVE-2025-4990 Stored Cross-site Scripting (XSS) vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:16 p.m.19 views

CVE-2025-4991 Stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting 3D Markup in Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:15 p.m.13 views

CVE-2025-4992 Stored Cross-site Scripting (XSS) vulnerability affecting Service Items Management in Service Process Engineer from Release 3DEXPERIENCE R2024x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Service Items Management in Service Process Engineer from Release 3DEXPERIENCE R2024x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:15 p.m.44 views

CVE-2025-4992

CVE-2025-4992 is a stored XSS vulnerability in Service Items Management of Dassault Systèmes’ Service Process Engineer (3DEXPERIENCE R2024x through R2025x). The issue allows an attacker to execute arbitrary script code in an authenticated user’s browser session via the affected component/file, wi...

8.7CVSS7.9AI score0.00266EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/30 12:0 a.m.5 views

PT-2025-23300 · Unknown · 3Dexperience

Name of the Vulnerable Software and Affected Versions: 3DEXPERIENCE versions R2022x through R2025x Description: A stored Cross-site Scripting XSS vulnerability affects Model Definition in Product Manager, allowing an attacker to execute arbitrary script code in a user's browser session. This issu...

8.7CVSS5.3AI score0.00266EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/05/30 12:0 a.m.3 views

Dassault Systèmes City Referential Manager 跨站脚本漏洞

Dassault Systèmes City Referential Manager is a City Referential Manager from Dassault Systèmes France. A cross-site scripting vulnerability exists in Dassault Systèmes City Referential Manager 3DEXPERIENCE version R2025x, which originates from stored cross-site scripting and could lead to...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/05/30 12:0 a.m.6 views

PT-2025-23298

Name of the Vulnerable Software and Affected Versions City Referential Manager versions 3DEXPERIENCE R2025x Description A stored Cross-site Scripting XSS issue affects City Discover within City Referential Manager. Exploitation allows an attacker to execute arbitrary script code within a user's...

8.7CVSS6.3AI score0.00266EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/05/30 12:0 a.m.5 views

PT-2025-23303 · Ds Systemes · Change Governance In Product Manager

Name of the Vulnerable Software and Affected Versions: Change Governance in Product Manager versions 3DEXPERIENCE R2022x through 3DEXPERIENCE R2025x Description: A stored Cross-site Scripting XSS issue allows an attacker to execute arbitrary script code in a user's browser session. This affects...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 4:32 a.m.12 views

CVE-2023-5598

Stored Cross-site Scripting XSS vulnerabilities affecting 3DSwym in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2023x allow an attacker to execute arbitrary script code...

5.4CVSS6.5AI score0.00388EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:32 a.m.9 views

CVE-2023-5597

A stored Cross-site Scripting XSS vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code...

5.4CVSS6.1AI score0.00252EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 2:59 a.m.6 views

CVE-2023-1996

A reflected Cross-site Scripting XSS vulnerability in Release 3DEXPERIENCE R2018x through Release 3DEXPERIENCE R2023x allows an attacker to execute arbitrary script code...

6.1CVSS6.5AI score0.00353EPSS
Exploits0References1
Citrix
Citrix
added 2025/04/25 12:0 a.m.13 views

Citrix Virtual Apps and Desktops - 3DExperience application crashes randomly inside ICA Session

Users might see that the 3DExperience.exe application from Dassault Systems crash randomly inside the ICA Session. The problem started after a major network outage...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/03/19 2:23 p.m.9 views

CVE-2025-0600

A stored Cross-site Scripting XSS vulnerability affecting Product Explorer in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/19 2:22 p.m.7 views

CVE-2025-0828

A stored Cross-site Scripting XSS vulnerability affecting Engineering Release in ENOVIA Product Engineering Specialist from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/19 2:20 p.m.7 views

CVE-2025-0827

A stored Cross-site Scripting XSS vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00294EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/19 2:20 p.m.8 views

CVE-2025-0595

A stored Cross-site Scripting XSS vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00294EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/19 2:20 p.m.8 views

CVE-2025-0830

A stored Cross-site Scripting XSS vulnerability affecting Meeting Management in ENOVIA Change Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
Rows per page
Query Builder