Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an XSS issue with search.
History

Fri, 11 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00038}

epss

{'score': 0.00042}


Thu, 05 Dec 2024 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 05 Dec 2024 16:00:00 +0000

Type Values Removed Values Added
Description Pega Platform versions 8.1 to Infinity 24.2.1 are affected by an XSS issue with search. Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an XSS issue with search.

Thu, 05 Dec 2024 15:45:00 +0000

Type Values Removed Values Added
Description Pega Platform versions 8.1 to Infinity 24.2.1 are affected by an XSS issue with search.
Weaknesses CWE-79
References
Metrics cvssV3_1

{'score': 5.9, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Pega

Published: 2024-12-05T15:28:29.644Z

Updated: 2024-12-05T16:30:58.223Z

Reserved: 2024-11-01T22:15:22.698Z

Link: CVE-2024-10716

cve-icon Vulnrichment

Updated: 2024-12-05T16:30:54.519Z

cve-icon NVD

Status : Received

Published: 2024-12-05T16:15:23.767

Modified: 2024-12-05T16:15:23.767

Link: CVE-2024-10716

cve-icon Redhat

No data.