- Description
- A stored Cross-site Scripting (XSS) vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
- Source
- 3DS.Information-Security@3ds.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 8.7
- Impact score
- 5.8
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
- Severity
- HIGH
- 3DS.Information-Security@3ds.com
- CWE-79
- Hype score
- Not currently trending
New post from https://t.co/uXvPWJyEiR (CVE-2025-0833 | Dassault Systèmes ENOVIA Collaborative Industry Innovator cross site scripting) has been published on https://t.co/EfyR9SYCid
@WolfgangSesin
17 Mar 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0833 A stored Cross-site Scripting (XSS) vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release… https://t.co/YcPo9g4Jwx
@CVEnew
17 Mar 2025
215 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-0833: HIGH] Critical security alert! A stored XSS vulnerability in ENOVIA Collaborative Industry Innovator allows attackers to run malicious code in users' browsers. Update from R2023x to R2024x immediat...#cybersecurity,#vulnerability https://t.co/uBjWmUCgjh https://t.
@CveFindCom
17 Mar 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes