Lucene search
+L

100 matches found

OSV
OSV
added 2023/04/21 4:15 p.m.2 views

CVE-2023-2141

An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication remote code execution...

8.8CVSS7.5AI score0.01044EPSS
Exploits0References1
OSV
OSV
added 2023/04/21 4:15 p.m.6 views

CVE-2023-2139

A reflected Cross-site Scripting XSS Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code...

6.1CVSS6.6AI score0.00353EPSS
Exploits0References1
Prion
Prion
added 2023/04/21 4:15 p.m.22 views

Deserialization of untrusted data

An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication remote code execution...

6.5CVSS8.9AI score0.01044EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/04/21 4:15 p.m.19 views

Server side request forgery (ssrf)

A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application...

5CVSS7.7AI score0.00563EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/04/21 4:15 p.m.23 views

Cross site scripting

A reflected Cross-site Scripting XSS Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code...

5.8CVSS6.1AI score0.00353EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/04/21 3:48 p.m.50 views

CVE-2023-2141

CVE-2023-2141 concerns an unsafe .NET object deserialization in DELMIA Apriso (2017–2022) that could lead to post-authentication remote code execution. Root cause: deserialization of untrusted .NET objects in the affected DELMIA Apriso releases. Impact is described as remote code execution with h...

8.8CVSS8.9AI score0.01044EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/21 3:48 p.m.10 views

CVE-2023-2141 Unsafe .NET object deserialization affecting DELMIA Apriso Release 2017 through Release 2022

An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication remote code execution...

8.5CVSS8.9AI score0.01044EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/21 3:48 p.m.41 views

CVE-2023-2141 Unsafe .NET object deserialization affecting DELMIA Apriso Release 2017 through Release 2022

An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication remote code execution...

8.5CVSS9.1AI score0.01044EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/04/21 3:48 p.m.11 views

CVE-2023-2140 Server-Side Request Forgery vulnerability affecting DELMIA Apriso Release 2017 through Release 2022

A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application...

7.5CVSS7.6AI score0.00563EPSS
Exploits0References1
CVE
CVE
added 2023/04/21 3:48 p.m.53 views

CVE-2023-2140

CVE-2023-2140 affects DELMIA Apriso releases 2017–2022. It is described as a Server-Side Request Forgery (SSRF) that could allow an unauthenticated attacker to make requests to arbitrary hosts from the DELMIA Apriso server. The NVD entry lists a High impact (I/H) with Network attack vector and no...

7.5CVSS7.6AI score0.00563EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/04/21 3:48 p.m.36 views

CVE-2023-2140 Server-Side Request Forgery vulnerability affecting DELMIA Apriso Release 2017 through Release 2022

A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application...

7.5CVSS7.8AI score0.00563EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/21 3:44 p.m.28 views

CVE-2023-2139 Reflected Cross-site Scripting vulnerability affecting DELMIA Apriso Release 2017 through Release 2022

A reflected Cross-site Scripting XSS Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code...

5.4CVSS6.3AI score0.00353EPSS
Exploits0References1
CVE
CVE
added 2023/04/21 3:44 p.m.74 views

CVE-2023-2139

DELMI A Apriso: A reflected Cross-site Scripting (XSS) vulnerability affects Release 2017 through 2022 in DELMIA Apriso. The connected sources specify a reflected XSS issue in the web UI, arising from inadequate input handling that can let an attacker execute arbitrary script code. There is no pu...

6.1CVSS5.9AI score0.00353EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/21 3:44 p.m.9 views

CVE-2023-2139 Reflected Cross-site Scripting vulnerability affecting DELMIA Apriso Release 2017 through Release 2022

A reflected Cross-site Scripting XSS Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code...

5.4CVSS6.2AI score0.00353EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/21 12:0 a.m.6 views

Dassault Systèmes DELMIA Apriso 代码问题漏洞

Dassault Systèmes DELMIA Apriso is an interactive manufacturing application for digital enterprises from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes DELMIA Apriso versions 2017 through 2022, which stems from the presence of a service area request forgery...

7.5CVSS7.5AI score0.00563EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/21 12:0 a.m.9 views

PT-2023-18175 · Dsi · Delmia Apriso

Name of the Vulnerable Software and Affected Versions: DELMIA Apriso versions 2017 through 2022 Description: A Server-Side Request Forgery issue could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application...

7.5CVSS7.5AI score0.00563EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/04/21 12:0 a.m.6 views

Dassault Systèmes DELMIA Apriso 代码问题漏洞

Dassault Systèmes DELMIA Apriso is an interactive manufacturing application for digital enterprises from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes DELMIA Apriso versions 2017 through 2022, which stems from a deserialization vulnerability in .NET objects. An...

8.8CVSS8.5AI score0.01044EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/04/21 12:0 a.m.4 views

Dassault Systèmes DELMIA Apriso 跨站脚本漏洞

Dassault Systèmes DELMIA Apriso is an interactive manufacturing application for digital enterprises from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes DELMIA Apriso versions 2017 through 2022, which stems from the presence of a Reflective Cross-Site Scripting XSS...

6.1CVSS6.2AI score0.00353EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/21 12:0 a.m.9 views

PT-2023-18182 · Dassault Systèmes · Delmia Apriso

Name of the Vulnerable Software and Affected Versions: DELMIA Apriso versions 2017 through 2022 Description: An unsafe .NET object deserialization could lead to post-authentication remote code execution. Recommendations: For DELMIA Apriso versions 2017 through 2022, update to a version that fixes...

8.8CVSS9AI score0.01044EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/04/21 12:0 a.m.6 views

PT-2023-3048 · Dassault Systèmes · Delmia Apriso

Name of the Vulnerable Software and Affected Versions: DELMIA Apriso versions Release 2017 through Release 2022 Description: The issue is related to a reflected Cross-site Scripting XSS vulnerability. This vulnerability can be exploited by a remote attacker to execute arbitrary script code,...

6.4CVSS6.3AI score0.00353EPSS
Exploits0References6
Rows per page
Query Builder