CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-6378

A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.9%

CVSS Severity

CVSS v3 Score 8.7

References

https://www.3ds.com/vulnerability/advisories

Products affected by CVE-2024-6378

3ds » 3dexperience » Version: r2022x

cpe:2.3:o:3ds:3dexperience:r2022x
3ds » 3dexperience » Version: r2023x

cpe:2.3:o:3ds:3dexperience:r2023x

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-6378

Products

Pricing

Contact Us