CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

892 matches found

CVE•added 2024/12/16 3:6 p.m.•39 views

CVE-2024-12091

A stored Cross-site Scripting (XSS) vulnerability affects Dassault Systèmes ENOVIA Collaborative Industry Innovator (3DEXPERIENCE) versions R2022x through R2024x. The issue arises from unsanitized/stored input allowing an attacker to execute arbitrary script in a user’s browser session. Affected ...

8.7CVSS7.8AI score0.01463EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/12/16 3:6 p.m.•8 views

CVE-2024-12090 Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.01463EPSS

Exploits0References1

Vulnrichment•added 2024/12/16 3:6 p.m.•6 views

CVE-2024-12090 Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x

8.7CVSS6.1AI score0.01463EPSS

Exploits0References1

CVE•added 2024/12/16 3:6 p.m.•35 views

CVE-2024-12090

CVE-2024-12090 is a stored XSS vulnerability in Dassault Systèmes ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x. Multiple connected records corroborate a stored XSS flaw that enables an attacker to run arbitrary script in a user’s browser session. The affected product is ...

8.7CVSS7.8AI score0.01463EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/12/16 3:6 p.m.•8 views

CVE-2024-12089 Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.00799EPSS

Exploits0References1

Cvelist•added 2024/12/16 3:6 p.m.•9 views

CVE-2024-12089 Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

8.7CVSS0.00799EPSS

Exploits0References1

CVE•added 2024/12/16 3:6 p.m.•39 views

CVE-2024-12089

The CVE-2024-12089 entry affects ENOVIA Collaborative Industry Innovator (3DEXPERIENCE R2022x through R2024x). The vulnerability is a Stored Cross-site Scripting (XSS) issue in the web application that could allow an attacker to execute arbitrary script in a user’s browser session. Connected sour...

8.7CVSS7.8AI score0.00799EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/12/16 12:0 a.m.•2 views

Dassault Systèmes ENOVIA Collaborative Industry Innovator 安全漏洞

Dassault Systèmes ENOVIA Collaborative Industry Innovator is an important toolset for real-time, secure and structured collaboration and product content management for an engineering team at Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes ENOVIA Collaborative Indust...

8.7CVSS6.5AI score0.01463EPSS

Exploits0References1

Positive Technologies•added 2024/12/16 12:0 a.m.•3 views

PT-2024-17434 · Ds Systemes · Enovia Collaborative Industry Innovator

Name of the Vulnerable Software and Affected Versions: ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x Description: A stored Cross-site Scripting XSS issue allows an attacker to execute arbitrary script code in a user's browser session. This enables the attacker to perform...

8.7CVSS6.6AI score0.01463EPSS

Exploits0References4

CNNVD•added 2024/12/16 12:0 a.m.•1 views

Dassault Systèmes ENOVIA Collaborative Industry Innovator 安全漏洞

8.7CVSS5.7AI score0.00799EPSS

Exploits0References1

CNNVD•added 2024/12/16 12:0 a.m.•3 views

Dassault Systèmes ENOVIA Collaborative Industry Innovator 安全漏洞

8.7CVSS6.5AI score0.01463EPSS

Exploits0References1

CISA•added 2024/11/12 12:0 p.m.•4 views

JCDC’s Collaborative Efforts Enhance Cybersecurity for the 2024 Olympic and Paralympic Games

The Cybersecurity and Infrastructure Security Agency CISA, through the Joint Cyber Defense Collaborative JCDC, enabled proactive coordination and information sharing to bolster cybersecurity ahead of the 2024 Olympic and Paralympic Games in Paris. Recognizing the potential for cyber threats...

7AI score

Exploits0References2

RedHat Linux•added 2024/11/12 9:11 a.m.•1 views

kernel: ACPI: CPPC: Use access_width over bit_width for system memory accesses

A vulnerability was found in the ACPI subsystem's CPPC driver in the Linux kernel. This issue occurs due to the mishandling of memory access bit width during performance capability calculations, which can lead to misaligned memory accesses and cause kernel panics on affected platforms...

5.5CVSS7.2AI score0.00016EPSS

Exploits0References5

Cvelist•added 2024/11/11 12:0 a.m.•16 views

CVE-2024-11060 Jinher Network Collaborative Management Platform 金和数字化智能办公平台 AcceptShow.aspx sql injection

A vulnerability classified as critical has been found in Jinher Network Collaborative Management Platform 金和数字化智能办公平台 1.0. Affected is an unknown function of the file /C6/JHSoft.Web.AcceptAip/AcceptShow.aspx/. The manipulation of the argument id leads to sql injection. It is possible to launch th...

6.5CVSS0.00084EPSS

Exploits0References4

Vulnrichment•added 2024/11/11 12:0 a.m.•7 views

CVE-2024-11060 Jinher Network Collaborative Management Platform 金和数字化智能办公平台 AcceptShow.aspx sql injection

6.5CVSS7.4AI score0.00084EPSS

Exploits0References4

HackRead•added 2024/10/25 2:47 p.m.•6 views

Enhancing Study with QR Codes: A Modern Educational Tool

QR codes are enhancing education by giving students instant access to study resources, interactive homework, and collaborative tools.…...

7.3AI score

Exploits0

NVD•added 2024/10/16 12:15 p.m.•20 views

CVE-2024-6380

A reflected Cross-site Scripting XSS vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.0083EPSS

Exploits0References1

Cvelist•added 2024/10/16 11:28 a.m.•18 views

CVE-2024-6380 Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

8.7CVSS0.0083EPSS

Exploits0References1

Vulnrichment•added 2024/10/16 11:28 a.m.•21 views

CVE-2024-6380 Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

8.7CVSS6.5AI score0.0083EPSS

Exploits0References1

CVE•added 2024/10/16 11:28 a.m.•42 views

CVE-2024-6380

CVE-2024-6380 is a reflected XSS vulnerability affecting ENOVIA Collaborative Industry Innovator (3DEXPERIENCE R2022x through R2024x). Connected sources confirm the issue targets the product/component (ENOVIA/Collaborative Industry Innovator) via reflective XSS, enabling arbitrary script executio...

8.7CVSS8AI score0.0083EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by