Lucene search
3DSCVELIST:CVE-2023-2139HistoryApr 21, 2023 - 3:44 p.m.
CVE-2023-2139 Reflected Cross-site Scripting vulnerability affecting DELMIA Apriso Release 2017 through Release 2022
2023-04-2115:44:51
CWE-79
3DS
www.cve.org
cve-2023-2139
reflected cross-site scripting
delmia apriso
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
18.5%
A reflected Cross-site Scripting (XSS) Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code.
CNA Affected
[
{
"vendor": "Dassault Systèmes",
"product": "DELMIA Apriso",
"versions": [
{
"status": "affected",
"version": "Apriso 2017 Golden",
"lessThanOrEqual": "Apriso 2017 SP7",
"versionType": "custom"
},
{
"status": "affected",
"version": "Apriso 2018 Golden",
"lessThanOrEqual": "Apriso 2018 SP4",
"versionType": "custom"
},
{
"status": "affected",
"version": "Apriso 2019 Golden",
"lessThanOrEqual": "Apriso 2019 SP5",
"versionType": "custom"
},
{
"status": "affected",
"version": "Apriso 2020 Golden",
"lessThanOrEqual": "Apriso 2020 SP4",
"versionType": "custom"
},
{
"status": "affected",
"version": "Apriso 2021 Golden",
"lessThanOrEqual": "Apriso 2021 SP1",
"versionType": "custom"
},
{
"status": "affected",
"version": "Apriso 2022 Golden"
}
],
"defaultStatus": "unaffected"
}
]References
Related
prion
prion
Cross site scripting
2023-04-21 16:15:00
nvd
nvd
CVE-2023-2139
2023-04-21 16:15:07
cve
cve
CVE-2023-2139
2023-04-21 16:15:07
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
18.5%
Related for CVELIST:CVE-2023-2139