Show filters
15 Total Results
Displaying 1-10 of 15
Sort by:
Attacker Value
Unknown

CVE-2024-12092

Disclosure Date: December 16, 2024 (last updated December 18, 2024)
A stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
0
0
Attacker Value
Unknown

CVE-2024-12091

Disclosure Date: December 16, 2024 (last updated December 18, 2024)
A stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
0
0
Attacker Value
Unknown

CVE-2024-12090

Disclosure Date: December 16, 2024 (last updated December 18, 2024)
A stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
0
0
Attacker Value
Unknown

CVE-2024-12089

Disclosure Date: December 16, 2024 (last updated December 18, 2024)
A stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
0
0
Attacker Value
Unknown

CVE-2024-10204

Disclosure Date: November 19, 2024 (last updated November 20, 2024)
Heap-based Buffer Overflow and Uninitialized Variable vulnerabilities exist in the X_B and SAT file reading procedure in eDrawings from Release SOLIDWORKS 2024 through Release SOLIDWORKS 2025. These vulnerabilities could allow an attacker to execute arbitrary code while opening a specially crafted X_B or SAT file.
0
0
Attacker Value
Unknown

CVE-2024-8040

Disclosure Date: October 16, 2024 (last updated October 17, 2024)
An authorization bypass through user-controlled key vulnerability affecting 3DSwym in 3DSwymer on Release 3DEXPERIENCE R2024x allows an authenticated attacker to access some unauthorized data.
0
0
Attacker Value
Unknown

CVE-2024-6380

Disclosure Date: October 16, 2024 (last updated October 17, 2024)
A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
0
0
Attacker Value
Unknown

CVE-2024-7737

Disclosure Date: September 19, 2024 (last updated September 20, 2024)
A stored Cross-site Scripting (XSS) vulnerability affecting 3DSwym in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
0
0
Attacker Value
Unknown

CVE-2024-7736

Disclosure Date: September 19, 2024 (last updated September 20, 2024)
A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
0
0
Attacker Value
Unknown

CVE-2024-3301

Disclosure Date: May 30, 2024 (last updated May 31, 2024)
An unsafe .NET object deserialization vulnerability in DELMIA Apriso Release 2019 through Release 2024 could lead to post-authentication remote code execution.
0
0
View More Topics  Next >