Search Results | AttackerKB

13 Total Results

Displaying 1-10 of 13

Attacker Value

Unknown

CVE-2024-8004

Disclosure Date: September 02, 2024 (last updated September 05, 2024)

A stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

Attacker Value

Unknown

CVE-2024-7939

Disclosure Date: September 02, 2024 (last updated September 13, 2024)

A stored Cross-site Scripting (XSS) vulnerability affecting 3DSwym in 3DSwymer on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

Attack Vector: Network Privileges: Low User Interaction: Required

Attacker Value

Unknown

CVE-2024-7938

Disclosure Date: September 02, 2024 (last updated September 05, 2024)

A stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

Attack Vector: Network Privileges: Low User Interaction: Required

Attacker Value

Unknown

CVE-2024-7932

Disclosure Date: September 02, 2024 (last updated September 13, 2024)

A stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

Attack Vector: Network Privileges: Low User Interaction: Required

Attacker Value

Unknown

CVE-2024-6379

Disclosure Date: August 20, 2024 (last updated August 27, 2024)

A reflected Cross-site Scripting (XSS) vulnerability affecting 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

Attack Vector: Network Privileges: None User Interaction: Required

Attacker Value

Unknown

CVE-2024-6378

Disclosure Date: August 20, 2024 (last updated August 22, 2024)

A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

Attack Vector: Network Privileges: Low User Interaction: Required

Attacker Value

Unknown

CVE-2024-6377

Disclosure Date: August 20, 2024 (last updated August 27, 2024)

An URL redirection to untrusted site (open redirect) vulnerability affecting 3DPassport in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to redirect users to an arbitrary website via a crafted URL.

Attack Vector: Network Privileges: None User Interaction: Required

Attacker Value

Unknown

CVE-2023-5599

Disclosure Date: November 21, 2023 (last updated November 25, 2023)

A stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2023x allows an attacker to execute arbitrary script code.

Attack Vector: Network Privileges: Low User Interaction: Required

Attacker Value

Unknown

CVE-2023-5598

Disclosure Date: November 21, 2023 (last updated November 29, 2023)

Stored Cross-site Scripting (XSS) vulnerabilities affecting 3DSwym in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2023x allow an attacker to execute arbitrary script code.

Attack Vector: Network Privileges: Low User Interaction: Required

Attacker Value

Unknown

CVE-2023-1997

Disclosure Date: August 28, 2023 (last updated October 08, 2023)

An OS Command Injection vulnerability exists in SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x. A specially crafted HTTP request can lead to arbitrary command execution.

Attack Vector: Network Privileges: Low User Interaction: None

13 Total Results

Displaying 1-10 of 13

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Quick Cookie Notification