Stored Cross-site Scripting Vulnerability in ENOVIA Collaborative Industry Innovator
CVE-2025-0832

Currently unrated

Key Information:

Vendor: Dassault Systèmes
Status: ENOVIA Collaborative Industry Innovator
Vendor: CVE Published:; 17 March 2025

🔔 Create Dassault Systèmes Vulnerability Alert

What is CVE-2025-0832?

A stored Cross-site Scripting (XSS) vulnerability exists in ENOVIA Collaborative Industry Innovator, impacting versions from 3DEXPERIENCE R2022x to R2024x. This security flaw allows attackers to inject malicious script code that runs in the context of the user's browser session. If exploited, it could lead to unauthorized access to sensitive information or manipulation of user data.

References

https://www.3ds.com/vulnerability/advisories

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 17, 2025