Pega: >> Pega Platform >> 8.8.5 Security Vulnerabilities
Pega Platform versions 8.7.5 to Infinity 24.2.2 are affected by a Insecure Direct Object Reference issue in a user interface component that can only be used to read data.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-10-16
Pega Platform versions 7.1.0 to Infinity 24.2.2 are affected by a Stored XSS issue in a user interface component. Â Requires a high privileged user with a developer role.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-09-10
Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an Stored XSS issue with profile.
CVSS Score
5.4
EPSS Score
0.001
Published
2025-01-13