Description
An arbitrary file-write vulnerability in Pega Browser Extension (PBE) affects Pega Robotic Automation version 22.1 or R25 users who are running automations that work with Google Chrome or Microsoft Edge. A bad actor could create a website that includes malicious code. The vulnerability could occur if a Robot Runtime user navigates to the malicious website.
Published: 2026-04-07
Score: 7.2 High
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary file‑write through a malicious website used by Pega Browser Extension
Action: Immediate Patch
AI Analysis

Impact

The Pega Browser Extension used by Pegasystems Pega Robot Studio allows a Robot Runtime user to write files to the local filesystem when a malicious website is visited. This flaw can be leveraged to create or overwrite arbitrary files, potentially installing malware or corrupting critical data, thereby compromising the integrity of the automation environment.

Affected Systems

Pegasystems Pega Robot Studio Robotic Automation versions 22.1 and R25 are affected, particularly when automations operate through Google Chrome or Microsoft Edge. Users running these versions in environments that permit web navigation are at risk.

Risk and Exploitability

The CVSS score of 7.2 indicates high severity. Although an EPSS score is unavailable, the vulnerability is not excluded from public exploitation. The attack requires a Robot Runtime user or automated process to access a crafted website that hosts malicious code. Once accessed, the extension writes files in the context of the user or automation, enabling a local escalation of privileges and potential lateral spread if privileged files are overwritten.

Generated by OpenCVE AI on April 7, 2026 at 22:10 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the remediation steps outlined in Pega’s support advisory A26 to update or patch the Pega Browser Extension.

Generated by OpenCVE AI on April 7, 2026 at 22:10 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 08 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Pegasystems
Pegasystems pega Robot Studio
Vendors & Products Pegasystems
Pegasystems pega Robot Studio

Tue, 07 Apr 2026 20:45:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 07 Apr 2026 18:00:00 +0000

Type Values Removed Values Added
Description An arbitrary file-write vulnerability in Pega Browser Extension (PBE) affects Pega Robotic Automation version 22.1 or R25 users who are running automations that work with Google Chrome or Microsoft Edge. A bad actor could create a website that includes malicious code. The vulnerability could occur if a Robot Runtime user navigates to the malicious website.
Title An arbitrary file-write vulnerability in Pega Browser Extension (PBE) affects Pega Robotic Automation version 22.1 or R25 users who are running automations that work with Google Chrome or Microsoft Edge.
Weaknesses CWE-284
References
Metrics cvssV4_0

{'score': 7.2, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:H/VA:H/SC:N/SI:H/SA:H'}

Subscriptions

Pegasystems Pega Robot Studio
cve-icon MITRE

Status: PUBLISHED

Assigner: Pega

Published:

Updated: 2026-04-07T19:59:49.928Z

Reserved: 2026-01-16T20:29:54.621Z

Link: CVE-2026-1078

cve-icon Vulnrichment

Updated: 2026-04-07T19:55:42.609Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-07T16:16:23.200

Modified: 2026-04-08T21:27:00.663

Link: CVE-2026-1078

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-08T19:48:30Z

Weaknesses