Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with case type.
History

Fri, 13 Sep 2024 16:30:00 +0000

Type Values Removed Values Added
First Time appeared Pega
Pega infinity
CPEs cpe:2.3:a:pega:infinity:*:*:*:*:*:*:*:*
Vendors & Products Pega
Pega infinity

Thu, 12 Sep 2024 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 12 Sep 2024 14:45:00 +0000

Type Values Removed Values Added
Description Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with case type.
Weaknesses CWE-79
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Pega

Published: 2024-09-12T14:25:28.473Z

Updated: 2024-09-12T15:05:49.076Z

Reserved: 2024-07-11T18:55:52.822Z

Link: CVE-2024-6701

cve-icon Vulnrichment

Updated: 2024-09-12T15:05:45.734Z

cve-icon NVD

Status : Analyzed

Published: 2024-09-12T15:18:26.953

Modified: 2024-09-13T16:08:43.407

Link: CVE-2024-6701

cve-icon Redhat

No data.