CVE-2024-7737

Stored Cross-site Scripting (XSS) vulnerability affecting 3DSwym in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

Go to CVE record

Access remediation information

Published
2024-09-19

Updated
2024-09-13

Description
A stored Cross-site Scripting (XSS) vulnerability affecting 3DSwym in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.

Affected Products
3DSwymer

Affected Versions
From Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

Severity
High

Go to Dassault Systèmes Security Advisories

Security Advisories