CVE-2025-4987 in Project Portfolio Managerالمعلومات

الملخص

بحسب MITRE • 16/06/2025

A stored Cross-site Scripting (XSS) vulnerability affecting Opportunity Management in Project Portfolio Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

مسؤول

3DS

حجز

20/05/2025

إفشاء

16/06/2025

الاعتدال

تمت الموافقة

إدخال

VDB-312655

EPSS

0.00350

KEV

لا

النشاطات

منخفض جدًا

المصادر

Interested in the pricing of exploits?

See the underground prices here!