First published: Tue Nov 21 2023(Updated: )
A stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2023x allows an attacker to execute arbitrary script code.
Credit: 3DS.Information-Security@3ds.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dassault 3dswymer 3dexperience 2022 | =fp.cfa.2337 | |
Dassault 3dswymer 3dexperience 2023 | =fp.cfa.2333 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this security issue is CVE-2023-5599.
The severity level of CVE-2023-5599 is medium with a rating of 5.4.
CVE-2023-5599 affects 3DSwymer in 3DEXPERIENCE R2022x through R2023x.
The Common Weakness Enumeration (CWE) ID for CVE-2023-5599 is CWE-79.
An attacker can exploit CVE-2023-5599 by executing arbitrary script code through a stored Cross-site Scripting (XSS) vulnerability in 3DDashboard.