Vulnerability Details CVE-2023-4843
Pega Platform versions 7.1 to 8.8.3 are affected by an HTML Injection issue with a name field utilized in Visual Business Director, however this field can only be modified by an authenticated administrative user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 21.0%
CVSS Severity
CVSS v3 Score 4.3
References
Products affected by CVE-2023-4843
-
cpe:2.3:a:pega:pega_platform:7.1.0
-
cpe:2.3:a:pega:pega_platform:7.1.1
-
cpe:2.3:a:pega:pega_platform:7.1.10
-
cpe:2.3:a:pega:pega_platform:7.1.2
-
cpe:2.3:a:pega:pega_platform:7.1.3
-
cpe:2.3:a:pega:pega_platform:7.1.4
-
cpe:2.3:a:pega:pega_platform:7.1.5
-
cpe:2.3:a:pega:pega_platform:7.1.6
-
cpe:2.3:a:pega:pega_platform:7.1.7
-
cpe:2.3:a:pega:pega_platform:7.1.8
-
cpe:2.3:a:pega:pega_platform:7.1.9
-
cpe:2.3:a:pega:pega_platform:7.2
-
cpe:2.3:a:pega:pega_platform:7.2.0
-
cpe:2.3:a:pega:pega_platform:7.2.1
-
cpe:2.3:a:pega:pega_platform:7.2.2
-
cpe:2.3:a:pega:pega_platform:7.2.2.
-
cpe:2.3:a:pega:pega_platform:7.3
-
cpe:2.3:a:pega:pega_platform:7.3.0
-
cpe:2.3:a:pega:pega_platform:7.3.1
-
cpe:2.3:a:pega:pega_platform:7.4
-
cpe:2.3:a:pega:pega_platform:7.4.0
-
cpe:2.3:a:pega:pega_platform:8.1
-
cpe:2.3:a:pega:pega_platform:8.1.0
-
cpe:2.3:a:pega:pega_platform:8.1.1
-
cpe:2.3:a:pega:pega_platform:8.1.2
-
cpe:2.3:a:pega:pega_platform:8.1.3
-
cpe:2.3:a:pega:pega_platform:8.1.4
-
cpe:2.3:a:pega:pega_platform:8.1.5
-
cpe:2.3:a:pega:pega_platform:8.1.6
-
cpe:2.3:a:pega:pega_platform:8.1.7
-
cpe:2.3:a:pega:pega_platform:8.1.8
-
cpe:2.3:a:pega:pega_platform:8.1.9
-
cpe:2.3:a:pega:pega_platform:8.2
-
cpe:2.3:a:pega:pega_platform:8.2.1
-
cpe:2.3:a:pega:pega_platform:8.2.2
-
cpe:2.3:a:pega:pega_platform:8.2.3
-
cpe:2.3:a:pega:pega_platform:8.2.4
-
cpe:2.3:a:pega:pega_platform:8.2.5
-
cpe:2.3:a:pega:pega_platform:8.2.6
-
cpe:2.3:a:pega:pega_platform:8.2.7
-
cpe:2.3:a:pega:pega_platform:8.2.8
-
cpe:2.3:a:pega:pega_platform:8.3
-
cpe:2.3:a:pega:pega_platform:8.3.0
-
cpe:2.3:a:pega:pega_platform:8.3.1
-
cpe:2.3:a:pega:pega_platform:8.3.2
-
cpe:2.3:a:pega:pega_platform:8.3.3
-
cpe:2.3:a:pega:pega_platform:8.3.4
-
cpe:2.3:a:pega:pega_platform:8.3.5
-
cpe:2.3:a:pega:pega_platform:8.3.6
-
cpe:2.3:a:pega:pega_platform:8.4
-
cpe:2.3:a:pega:pega_platform:8.4.0.237
-
cpe:2.3:a:pega:pega_platform:8.4.1
-
cpe:2.3:a:pega:pega_platform:8.4.2
-
cpe:2.3:a:pega:pega_platform:8.4.3
-
cpe:2.3:a:pega:pega_platform:8.4.4
-
cpe:2.3:a:pega:pega_platform:8.4.5
-
cpe:2.3:a:pega:pega_platform:8.4.6
-
cpe:2.3:a:pega:pega_platform:8.5
-
cpe:2.3:a:pega:pega_platform:8.5.1
-
cpe:2.3:a:pega:pega_platform:8.5.2
-
cpe:2.3:a:pega:pega_platform:8.5.3
-
cpe:2.3:a:pega:pega_platform:8.5.4
-
cpe:2.3:a:pega:pega_platform:8.5.5
-
cpe:2.3:a:pega:pega_platform:8.5.6
-
cpe:2.3:a:pega:pega_platform:8.6
-
cpe:2.3:a:pega:pega_platform:8.6.1
-
cpe:2.3:a:pega:pega_platform:8.6.2
-
cpe:2.3:a:pega:pega_platform:8.6.3
-
cpe:2.3:a:pega:pega_platform:8.6.4
-
cpe:2.3:a:pega:pega_platform:8.6.5
-
cpe:2.3:a:pega:pega_platform:8.6.6
-
cpe:2.3:a:pega:pega_platform:8.7
-
cpe:2.3:a:pega:pega_platform:8.7.1
-
cpe:2.3:a:pega:pega_platform:8.7.2
-
cpe:2.3:a:pega:pega_platform:8.7.3
-
cpe:2.3:a:pega:pega_platform:8.7.4
-
cpe:2.3:a:pega:pega_platform:8.7.5
-
cpe:2.3:a:pega:pega_platform:8.7.6
-
cpe:2.3:a:pega:pega_platform:8.8
-
cpe:2.3:a:pega:pega_platform:8.8.1
-
cpe:2.3:a:pega:pega_platform:8.8.2
-
cpe:2.3:a:pega:pega_platform:8.8.3