Pega: >> Pega Platform >> 24.1.3 Security Vulnerabilities
Pega Platform versions 8.1.0 through 25.1.0 are affected by a Stored Cross-site Scripting vulnerability in a user interface component. Requires an administrative user and given extensive access rights, impact to Confidentiality is low and Integrity is none.
CVSS Score
4.8
EPSS Score
0.0
Published
2026-03-31
Pega Platform versions 8.7.5 to Infinity 24.2.2 are affected by a Insecure Direct Object Reference issue in a user interface component that can only be used to read data.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-10-16