CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Pega: >> Pega Platform >> 8.4.2 Security Vulnerabilities

CVE-2022-35656

Pega Platform from 8.3 to 8.7.3 vulnerability may allow authenticated security administrators to alter CSRF settings directly.

CVSS Score

6.8

EPSS Score

0.001

Published

2022-08-22

CVE-2020-23957

Pega Platform through 8.4.x is affected by Cross Site Scripting (XSS) via the ConnectionID parameter, as demonstrated by a pyActivity=Data-TRACERSettings.pzStartTracerSession request to a PRAuth URI.

CVSS Score

6.1

EPSS Score

0.002

Published

2020-12-15

Page 2

Vulnerabilities

Vulnerable Software

Pega: >> Pega Platform >> 8.4.2 Security Vulnerabilities

Products

Pricing

Contact Us