A stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.
References
| Link | Resource |
|---|---|
| https://www.3ds.com/vulnerability/advisories | Vendor Advisory |
Configurations
History
13 Sep 2024, 07:15
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | (en) A stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session. |
04 Sep 2024, 14:52
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://www.3ds.com/vulnerability/advisories - Vendor Advisory | |
| CPE | cpe:2.3:a:3ds:3dexperience:r2024x:*:*:*:*:*:*:* | |
| First Time |
3ds 3dexperience
3ds |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.4 |
03 Sep 2024, 12:59
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
02 Sep 2024, 12:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-09-02 12:15
Updated : 2024-09-13 07:15
NVD link : CVE-2024-7932
Mitre link : CVE-2024-7932
CVE.ORG link : CVE-2024-7932
JSON object : View
Products Affected
3ds
- 3dexperience
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')