- Description
- A stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
- Source
- 3DS.Information-Security@3ds.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 8.7
- Impact score
- 5.8
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
- Severity
- HIGH
- 3DS.Information-Security@3ds.com
- CWE-79
- Hype score
- Not currently trending
CVE-2025-0829 A stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPE… https://t.co/QA6eFmmPg0
@CVEnew
17 Mar 2025
237 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-0829: HIGH] Critical XSS vulnerability in ENOVIA Collaborative Industry Innovator gives attackers ability to run malicious scripts in user browsers. Ensure systems are updated to avoid exploits.#cybersecurity,#vulnerability https://t.co/dcNqO35xnv https://t.co/bxJnvtvWy
@CveFindCom
17 Mar 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes