CVE-2026-2101

Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIAvpm Web Access from ENOVIAvpm Version 1 Release 16 through ENOVIAvpm Version 1 Release 19

Go to CVE record
Access remediation information

Published
2026-02-16

 

Updated 
-

 

Description
A Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIAvpm Web Access from ENOVIAvpm Version 1 Release 16 through ENOVIAvpm Version 1 Release 19 allows an attacker to execute arbitrary script code in user's browser session.

 

Affected Products
ENOVIAvpm Web Access

 

Affected Versions
From ENOVIAvpm Version 1 Release 16 through ENOVIAvpm Version 1 Release 19

 

Severity
High

Go to Dassault Systèmes Security Advisories

Security Advisories