# CVE-2023-3588

Stored Cross-site Scripting (XSS) vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x

**Published**
2023-09-13

**Updated**
-

**Description**
A stored Cross-site Scripting (XSS) vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x allows an attacker to execute arbitrary script code.

**Affected Products**
Teamwork Cloud - Business Edition
Teamwork Cloud - Enterprise Edition
Teamwork Cloud - Business Pro Edition
Teamwork Cloud - Standard Edition

**Affected Versions**
From No Magic Release 2021x through No Magic Release 2022x

**Severity**
Medium

Go to Dassault Systèmes Security Advisories

[Security Advisories](/trust-center/security/security-advisories)

[   Go to CVE record  ](https://www.cve.org/CVERecord?id=CVE-2023-3588)

[   Access remediation information     ](https://support.3ds.com/knowledge-base/?q=docid%3AQA00000305836)