Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with case type.
References
Link | Resource |
---|---|
https://support.pega.com/support-doc/pega-security-advisory-c24-vulnerability-remediation-note | Permissions Required |
Configurations
History
13 Sep 2024, 16:08
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:pega:infinity:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.8 |
Summary |
|
|
References | () https://support.pega.com/support-doc/pega-security-advisory-c24-vulnerability-remediation-note - Permissions Required | |
First Time |
Pega
Pega infinity |
12 Sep 2024, 15:18
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-09-12 15:18
Updated : 2024-09-13 16:08
NVD link : CVE-2024-6701
Mitre link : CVE-2024-6701
CVE.ORG link : CVE-2024-6701
JSON object : View
Products Affected
pega
- infinity
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')