ГлавнаяУязвимости → CVE-2025-0602
8.7высокая

CVE-2025-0602

→ есть в БДУ: BDU:2025-11557 (на русском)
Описание (на английском; русское — в БДУ выше)

A stored Cross-site Scripting (XSS) vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.

CVSS
Балл8.7 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
Источники
https://www.3ds.com/vulnerability/advisories