100 matches found
CVE-2023-2141
An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication remote code execution...
CVE-2023-2139
A reflected Cross-site Scripting XSS Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code...
Deserialization of untrusted data
An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication remote code execution...
Server side request forgery (ssrf)
A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application...
Cross site scripting
A reflected Cross-site Scripting XSS Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code...
CVE-2023-2141
CVE-2023-2141 concerns an unsafe .NET object deserialization in DELMIA Apriso (2017–2022) that could lead to post-authentication remote code execution. Root cause: deserialization of untrusted .NET objects in the affected DELMIA Apriso releases. Impact is described as remote code execution with h...
CVE-2023-2141 Unsafe .NET object deserialization affecting DELMIA Apriso Release 2017 through Release 2022
An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication remote code execution...
CVE-2023-2141 Unsafe .NET object deserialization affecting DELMIA Apriso Release 2017 through Release 2022
An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication remote code execution...
CVE-2023-2140 Server-Side Request Forgery vulnerability affecting DELMIA Apriso Release 2017 through Release 2022
A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application...
CVE-2023-2140
CVE-2023-2140 affects DELMIA Apriso releases 2017–2022. It is described as a Server-Side Request Forgery (SSRF) that could allow an unauthenticated attacker to make requests to arbitrary hosts from the DELMIA Apriso server. The NVD entry lists a High impact (I/H) with Network attack vector and no...
CVE-2023-2140 Server-Side Request Forgery vulnerability affecting DELMIA Apriso Release 2017 through Release 2022
A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application...
CVE-2023-2139 Reflected Cross-site Scripting vulnerability affecting DELMIA Apriso Release 2017 through Release 2022
A reflected Cross-site Scripting XSS Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code...
CVE-2023-2139
DELMI A Apriso: A reflected Cross-site Scripting (XSS) vulnerability affects Release 2017 through 2022 in DELMIA Apriso. The connected sources specify a reflected XSS issue in the web UI, arising from inadequate input handling that can let an attacker execute arbitrary script code. There is no pu...
CVE-2023-2139 Reflected Cross-site Scripting vulnerability affecting DELMIA Apriso Release 2017 through Release 2022
A reflected Cross-site Scripting XSS Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code...
Dassault Systèmes DELMIA Apriso 代码问题漏洞
Dassault Systèmes DELMIA Apriso is an interactive manufacturing application for digital enterprises from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes DELMIA Apriso versions 2017 through 2022, which stems from the presence of a service area request forgery...
PT-2023-18175 · Dsi · Delmia Apriso
Name of the Vulnerable Software and Affected Versions: DELMIA Apriso versions 2017 through 2022 Description: A Server-Side Request Forgery issue could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application...
Dassault Systèmes DELMIA Apriso 代码问题漏洞
Dassault Systèmes DELMIA Apriso is an interactive manufacturing application for digital enterprises from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes DELMIA Apriso versions 2017 through 2022, which stems from a deserialization vulnerability in .NET objects. An...
Dassault Systèmes DELMIA Apriso 跨站脚本漏洞
Dassault Systèmes DELMIA Apriso is an interactive manufacturing application for digital enterprises from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes DELMIA Apriso versions 2017 through 2022, which stems from the presence of a Reflective Cross-Site Scripting XSS...
PT-2023-18182 · Dassault Systèmes · Delmia Apriso
Name of the Vulnerable Software and Affected Versions: DELMIA Apriso versions 2017 through 2022 Description: An unsafe .NET object deserialization could lead to post-authentication remote code execution. Recommendations: For DELMIA Apriso versions 2017 through 2022, update to a version that fixes...
PT-2023-3048 · Dassault Systèmes · Delmia Apriso
Name of the Vulnerable Software and Affected Versions: DELMIA Apriso versions Release 2017 through Release 2022 Description: The issue is related to a reflected Cross-site Scripting XSS vulnerability. This vulnerability can be exploited by a remote attacker to execute arbitrary script code,...